5 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-52483
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mctp: perform route lookups under a RCU read-side lock Our current route lookups...
BELL-CVE-2023-52483
Bulletin has no description...
CVE-2023-52483
A use-after-free vulnerability was found in the Linux kernel, which affects the mctp component and is caused by route lookups that traverse the net's route list without the RCU read lock held. This issue can result in a use-after-free situation where the kfree function is called on a route pointe...
CVE-2023-52483
creationtimestamp| type| source ---|---|--- 2024-02-29 07:22:03+00:00| seen| https://t.me/ctinow/196277 2024-02-29 07:26:46+00:00| seen| https://t.me/ctinow/196294 2024-02-29 12:46:59+00:00| seen| https://t.me/ctinow/196592 2024-03-01 06:41:08+00:00| seen|...
CVE-2023-52483
CVE-2023-52483 affects the Linux kernel where mctp_route_lookup/mctp_route_lookup_null traverse net->mctp.routes without an RCU read lock, allowing a potential race that could lead to a use-after-free due to a grace period expiry and a kfree while a route pointer is in use. The security adviso...