53 matches found
CVE-2023-52438
CVE-2023-52438 concerns a Linux kernel use-after-free in the binder shrinker path. The issue arises because the mmap read lock is held during the shrinker’s callback, making alloc->vma unsafe to access when munmap races with shrink. The fix downgrades or avoids the unsafe path by isolating the...
CVE-2023-52444
CVE-2023-52444 : In Linux kernel f2fs, a dirent corruption risk during cross-directory rename (dir/.. links) was fixed. The issue arose in f2fs_rename() when the sourceDir and targetDir differ and a whiteout is not present; a missing f2fs_set_link() could fail to update the ".." inumber, causing ...
CVE-2023-52446
CVE-2023-52446 affects the Linux kernel BPF subsystem. A race between btf_put() and map_free() can cause a slab-use-after-free in bpf_rb_root_free, as shown by the kasan trace. The impact is described as a use-after-free condition that can lead to a kernel crash or memory corruption. A fix has be...