Lucene search
PRIOn knowledge basePRION:CVE-2023-1252HistoryMar 23, 2023 - 9:15 p.m.
Design/Logic Flaw
2023-03-2321:15:00
PRIOn knowledge base
www.prio-n.com
4
design/logic flaw
ext4 file system
linux kernel
use-after-free
local user
crash
privilege escalation
file operations
overlay fs
A use-after-free flaw was found in the Linux kernel’s Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash or potentially escalate their privileges on the system. Only if patch 9a2544037600 (“ovl: fix use after free in struct ovl_aio_req”) not applied yet, the kernel could be affected.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux_kernel | ge | 5.6 | |
| linux_kernel | lt | 5.10.80 | |
| linux_kernel | ge | 5.11 | |
| linux_kernel | lt | 5.14.19 | |
| linux_kernel | ge | 5.15 | |
| linux_kernel | lt | 5.15.3 |
Related
cbl_mariner
cbl_mariner
CVE-2023-1252 affecting package kernel for versions less than 5.15.107.1-2
2023-05-03 16:08:28
CVE-2023-1252 affecting package kernel 5.10.174.1-1
2023-05-03 19:35:26
redhatcve
redhatcve
CVE-2023-1252
2023-03-07 14:59:30
ubuntucve
ubuntucve
CVE-2023-1252
2023-03-23 00:00:00
cnvd
cnvd
Linux kernel Ext4 file system memory misreference vulnerability
2023-03-27 00:00:00
cvelist
cvelist
CVE-2023-1252
2023-03-23 00:00:00
debiancve
debiancve
CVE-2023-1252
2023-03-23 21:15:19
cve
cve
CVE-2023-1252
2023-03-23 21:15:19
nvd
nvd
CVE-2023-1252
2023-03-23 21:15:19
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2024-049)
2024-02-06 00:00:00
RHEL 9 : kernel (RHSA-2023:6583)
2024-04-28 00:00:00
Oracle Linux 9 : kernel (ELSA-2023-6583)
2023-11-16 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2023-11-12 00:00:00
kernel security, bug fix, and enhancement update
2023-11-17 00:00:00
redhat
redhat
(RHSA-2023:6583) Important: kernel security, bug fix, and enhancement update
2023-11-07 06:09:24
(RHSA-2024:0724) Important: kernel security and bug fix update
2024-02-07 16:01:29
osv
osv
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2023-12-18 18:02:34
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16