CVE-2023-50431

2023-12-0900:00:00

ubuntu.com

cve-2023-50431

information leak

habanalabs_ioctl.c

linux kernel

user space

bugzilla

loadable module

ubuntu

amd64

unix

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in
the Linux kernel through 6.6.5 allows an information leak to user space
because info->pad0 is not initialized.

Bugs

Notes

Author	Note
rodrigo-zaiden	driver only available by default as a loadable module in amd64 kernels in Ubuntu.

OSVersionArchitecturePackageVersionFilename
ubuntu23.10noarchlinux< 6.5.0-27.28UNKNOWN
ubuntu24.04noarchlinux< 6.8.0-7.7UNKNOWN
ubuntu23.10noarchlinux-aws< 6.5.0-1017.17UNKNOWN
ubuntu24.04noarchlinux-aws< anyUNKNOWN
ubuntu22.04noarchlinux-aws-6.5< 6.5.0-1017.17~22.04.2UNKNOWN
ubuntu23.10noarchlinux-azure< 6.5.0-1018.19UNKNOWN
ubuntu24.04noarchlinux-azure< anyUNKNOWN
ubuntu22.04noarchlinux-azure-6.5< 6.5.0-1018.19~22.04.2UNKNOWN
ubuntu23.10noarchlinux-gcp< 6.5.0-1017.17UNKNOWN
ubuntu24.04noarchlinux-gcp< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	23.10	noarch	linux	< 6.5.0-27.28	UNKNOWN
ubuntu	24.04	noarch	linux	< 6.8.0-7.7	UNKNOWN
ubuntu	23.10	noarch	linux-aws	< 6.5.0-1017.17	UNKNOWN
ubuntu	24.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	22.04	noarch	linux-aws-6.5	< 6.5.0-1017.17~22.04.2	UNKNOWN
ubuntu	23.10	noarch	linux-azure	< 6.5.0-1018.19	UNKNOWN
ubuntu	24.04	noarch	linux-azure	< any	UNKNOWN
ubuntu	22.04	noarch	linux-azure-6.5	< 6.5.0-1018.19~22.04.2	UNKNOWN
ubuntu	23.10	noarch	linux-gcp	< 6.5.0-1017.17	UNKNOWN
ubuntu	24.04	noarch	linux-gcp	< any	UNKNOWN