LinuxVULNRICHMENT:CVE-2023-52646CVE-2023-52646 aio: fix mremap after fork null-deref
In the Linux kernel, the following vulnerability has been resolved:
aio: fix mremap after fork null-deref
Commit e4a0d3e720e7 (“aio: Make it possible to remap aio ring”) introduced
a null-deref if mremap is called on an old aio mapping after fork as
mm->ioctx_table will be set to NULL.
[[email protected]: fix 80 column issue]
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "808f1e4b5723",
"versionType": "git"
},
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "d8dca1bfe9ad",
"versionType": "git"
},
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "4326d0080f7e",
"versionType": "git"
},
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "c261f798f7ba",
"versionType": "git"
},
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "178993157e8c",
"versionType": "git"
},
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "af126acf01a1",
"versionType": "git"
},
{
"status": "affected",
"version": "e4a0d3e720e7",
"lessThan": "81e9d6f86476",
"versionType": "git"
}
],
"programFiles": [
"fs/aio.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "3.19"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "3.19",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "4.14.306",
"versionType": "custom",
"lessThanOrEqual": "4.14.*"
},
{
"status": "unaffected",
"version": "4.19.273",
"versionType": "custom",
"lessThanOrEqual": "4.19.*"
},
{
"status": "unaffected",
"version": "5.4.232",
"versionType": "custom",
"lessThanOrEqual": "5.4.*"
},
{
"status": "unaffected",
"version": "5.10.169",
"versionType": "custom",
"lessThanOrEqual": "5.10.*"
},
{
"status": "unaffected",
"version": "5.15.95",
"versionType": "custom",
"lessThanOrEqual": "5.15.*"
},
{
"status": "unaffected",
"version": "6.1.13",
"versionType": "custom",
"lessThanOrEqual": "6.1.*"
},
{
"status": "unaffected",
"version": "6.2",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"fs/aio.c"
],
"defaultStatus": "affected"
}
]References
git.kernel.org/stable/c/178993157e8c50aef7f35d7d6d3b44bb428199e1
git.kernel.org/stable/c/4326d0080f7e84fba775da41d158f46cf9d3f1c2
git.kernel.org/stable/c/808f1e4b5723ae4eda724d2ad6f6638905eefd95
git.kernel.org/stable/c/81e9d6f8647650a7bead74c5f926e29970e834d1
git.kernel.org/stable/c/af126acf01a12bdb04986fd26fc2eb3b40249e0d
git.kernel.org/stable/c/c261f798f7baa8080cf0214081d43d5f86bb073f
git.kernel.org/stable/c/d8dca1bfe9adcae38b35add64977818c0c13dd22
Related
AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial