CVE-2023-52801
9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
iommufd: Fix missing update of domains_itree after splitting iopt_area
In iopt_area_split(), if the original iopt_area has filled a domain and is linked to domains_itree, pages_nodes have to be properly reinserted. Otherwise the domains_itree becomes corrupted and we will UAF.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 51fe6141f0f64ae0bbc096a41a07572273e8c0ef < 836db2e7e4565d8218923b3552304a1637e2f28d | affected |
| Linux | Linux | 51fe6141f0f64ae0bbc096a41a07572273e8c0ef < fcb32111f01ddf3cbd04644cde1773428e31de6a | affected |
| Linux | Linux | 51fe6141f0f64ae0bbc096a41a07572273e8c0ef < e7250ab7ca4998fe026f2149805b03e09dc32498 | affected |
| Linux | Linux | 6.2 | affected |
| Linux | Linux | 0 < 6.2 | unaffected |
| Linux | Linux | 6.5.13 <= 6.5.* | unaffected |
| Linux | Linux | 6.6.3 <= 6.6.* | unaffected |
| Linux | Linux | 6.7 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/836db2e7e4565d8218923b3552304a1637e2f28d
- https://git.kernel.org/stable/c/fcb32111f01ddf3cbd04644cde1773428e31de6a
- https://git.kernel.org/stable/c/e7250ab7ca4998fe026f2149805b03e09dc32498
References
- https://git.kernel.org/stable/c/836db2e7e4565d8218923b3552304a1637e2f28d
- https://git.kernel.org/stable/c/fcb32111f01ddf3cbd04644cde1773428e31de6a
- https://git.kernel.org/stable/c/e7250ab7ca4998fe026f2149805b03e09dc32498
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.