CVE-2023-52914

Summary

In the Linux kernel, the following vulnerability has been resolved:

io_uring/poll: add hash if ready poll request can't complete inline

If we don't, then we may lose access to it completely, leading to a request leak. This will eventually stall the ring exit process as well.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux49f1c68e048f1706b71c8255faf8110113d1cc48 < 4ad6c063541665c407d17e1faf2fe4f04e947dccaffected
LinuxLinux49f1c68e048f1706b71c8255faf8110113d1cc48 < febb985c06cb6f5fac63598c0bffd4fd823d110daffected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.7 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References