CVE-2023-52801

Summary

In the Linux kernel, the following vulnerability has been resolved:

iommufd: Fix missing update of domains_itree after splitting iopt_area

In iopt_area_split(), if the original iopt_area has filled a domain and is linked to domains_itree, pages_nodes have to be properly reinserted. Otherwise the domains_itree becomes corrupted and we will UAF.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux51fe6141f0f64ae0bbc096a41a07572273e8c0ef < 836db2e7e4565d8218923b3552304a1637e2f28daffected
LinuxLinux51fe6141f0f64ae0bbc096a41a07572273e8c0ef < fcb32111f01ddf3cbd04644cde1773428e31de6aaffected
LinuxLinux51fe6141f0f64ae0bbc096a41a07572273e8c0ef < e7250ab7ca4998fe026f2149805b03e09dc32498affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.5.13 <= 6.5.*unaffected
LinuxLinux6.6.3 <= 6.6.*unaffected
LinuxLinux6.7 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References