CVE-2023-4732

Summary

A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmd_t x.

Affected Software

VendorProductVersion RangeStatus
Red HatRed Hat Enterprise Linux 80:4.18.0-513.5.1.rt7.307.el8_9 < *unaffected
Red HatRed Hat Enterprise Linux 80:4.18.0-513.5.1.el8_9 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Extended Update Support0:4.18.0-372.87.1.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Extended Update Support0:4.18.0-477.36.1.el8_8 < *unaffected
Red HatRed Hat Virtualization 4 for Red Hat Enterprise Linux 80:4.18.0-372.87.1.el8_6 < *unaffected

Weaknesses

  • CWE-366: Race Condition within a Thread

Workarounds

A possible workaround is disabling Transparent Hugepage

ADP Enrichment

CVE Program Container

Additional References

References