DEBIAN-CVE-2023-53344

In the Linux kernel, the following vulnerability has been resolved: can: bcm: bcmtxsetup: fix KMSAN uninit-value in vfswrite Syzkaller reported the following issue: ===================================================== BUG: KMSAN: uninit-value in aiorwdone fs/aio.c:1520 inline BUG: KMSAN:...

CVE-2023-53344

In CVE-2023-53344, the Linux kernel patch addresses a KMSAN uninitialized-value issue in bcm_tx_setup triggered by uninitialized memory during aio_write handling after a memcpy_from_msg call. The vulnerability chain involves can/bcm code allocating an op frame and copying data, with a comparison ...

kernel: io_submit_one() NULL ptr deref

The iosubmitone function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of service NULL pointer dereference via a crafted iosubmit system call with an IOCBFLAGRESFD flag...

PT-2010-4523 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.23 Description: The issue allows local users to cause a denial of service due to a NULL pointer dereference. This can be achieved by using a crafted io submit system call with an IOCB FLAG RESFD flag...