CVE-2023-52509

2024-03-0200:00:00

ubuntu.com

linux kernel

use-after-free

ravb stop

work issue

netdev

phy stop

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.4%

JSON

In the Linux kernel, the following vulnerability has been resolved: ravb:
Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should
call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to
use the freed priv after ravb_remove() was called like below: CPU0 CPU1
ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) //
free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call
.ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called,
netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be
called after phy_stop().

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux< anyUNKNOWN
ubuntu22.04noarchlinux< anyUNKNOWN
ubuntu23.10noarchlinux< anyUNKNOWN
ubuntu24.04noarchlinux< anyUNKNOWN
ubuntu14.04noarchlinux< anyUNKNOWN
ubuntu16.04noarchlinux< anyUNKNOWN
ubuntu18.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws< anyUNKNOWN
ubuntu22.04noarchlinux-aws< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< any	UNKNOWN
ubuntu	20.04	noarch	linux	< any	UNKNOWN
ubuntu	22.04	noarch	linux	< any	UNKNOWN
ubuntu	23.10	noarch	linux	< any	UNKNOWN
ubuntu	24.04	noarch	linux	< any	UNKNOWN
ubuntu	14.04	noarch	linux	< any	UNKNOWN
ubuntu	16.04	noarch	linux	< any	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< any	UNKNOWN