CVE-2023-52646

Summary

In the Linux kernel, the following vulnerability has been resolved:

aio: fix mremap after fork null-deref

Commit e4a0d3e720e7 ("aio: Make it possible to remap aio ring") introduced a null-deref if mremap is called on an old aio mapping after fork as mm->ioctx_table will be set to NULL.

[jmoyer@redhat.com: fix 80 column issue]

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < 808f1e4b5723ae4eda724d2ad6f6638905eefd95affected
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < d8dca1bfe9adcae38b35add64977818c0c13dd22affected
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < 4326d0080f7e84fba775da41d158f46cf9d3f1c2affected
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < c261f798f7baa8080cf0214081d43d5f86bb073faffected
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < 178993157e8c50aef7f35d7d6d3b44bb428199e1affected
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < af126acf01a12bdb04986fd26fc2eb3b40249e0daffected
LinuxLinuxe4a0d3e720e7e508749c1439b5ba3aff56c92976 < 81e9d6f8647650a7bead74c5f926e29970e834d1affected
LinuxLinux3.19affected
LinuxLinux0 < 3.19unaffected
LinuxLinux4.14.306 <= 4.14.*unaffected
LinuxLinux4.19.273 <= 4.19.*unaffected
LinuxLinux5.4.232 <= 5.4.*unaffected
LinuxLinux5.10.169 <= 5.10.*unaffected
LinuxLinux5.15.95 <= 5.15.*unaffected
LinuxLinux6.1.13 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References