CVE-2023-52656

Summary

In the Linux kernel, the following vulnerability has been resolved:

io_uring: drop any code related to SCM_RIGHTS

This is dead code after we dropped support for passing io_uring fds over SCM_RIGHTS, get rid of it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < cfb24022bb2c31f1f555dc6bc3cc5e2547446fb3affected
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < a6771f343af90a25f3a14911634562bb5621df02affected
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < d909d381c3152393421403be4b6435f17a2378b4affected
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < a3812a47a32022ca76bf46ddacdd823dc2aabf8baffected
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < 6fc19b3d8a45ff0e5d50ec8184cee1d5eac1a8baaffected
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < 88c49d9c896143cdc0f77197c4dcf24140375e89affected
LinuxLinux2b188cc1bb857a9d4701ae59aa7768b5124e262e < 6e5e6d274956305f1fc0340522b38f5f5be74bdbaffected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.273 <= 5.4.*unaffected
LinuxLinux5.10.214 <= 5.10.*unaffected
LinuxLinux5.15.153 <= 5.15.*unaffected
LinuxLinux6.1.83 <= 6.1.*unaffected
LinuxLinux6.6.23 <= 6.6.*unaffected
LinuxLinux6.7.11 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References