Lucene search
Ubuntu.comUB:CVE-2023-52502HistoryMar 02, 2024 - 12:00 a.m.
CVE-2023-52502
2024-03-0200:00:00
ubuntu.com
ubuntu.com
9
cve-2023-52502
linux kernel
net
nfc
race fixes
sili luo
uaf
socket
lock.
In the Linux kernel, the following vulnerability has been resolved: net:
nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() Sili Luo
reported a race in nfc_llcp_sock_get(), leading to UAF. Getting a reference
on the socket found in a lookup while holding a lock should happen before
releasing the lock. nfc_llcp_sock_get_sn() has a similar problem. Finally
nfc_llcp_recv_snl() needs to make sure the socket found by
nfc_llcp_sock_from_sn() does not disappear.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 14.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 18.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
Related
debiancve
debiancve
CVE-2023-52502
2024-03-02 22:15:47
nvd
nvd
CVE-2023-52502
2024-03-02 22:15:47
cve
cve
CVE-2023-52502
2024-03-02 22:15:47
redhatcve
redhatcve
CVE-2023-52502
2024-03-04 19:50:24
cvelist
cvelist
prion
prion
Design/Logic Flaw
2024-03-02 22:15:00
vulnrichment
vulnrichment
nessus
nessus
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:0975-1)
2024-05-07 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1320-1)
2024-04-19 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:0857-1)
2024-03-25 00:00:00