CVE-2023-53290

Summary

In the Linux kernel, the following vulnerability has been resolved:

samples/bpf: Fix fout leak in hbm's run_bpf_prog

Fix fout being fopen'ed but then not subsequently fclose'd. In the affected branch, fout is otherwise going out of scope.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa1270fe95b74eb3195b107c494ed1f11b932a278 < a7ec2f424f6edad34651137783a0a59eca9aa37eaffected
LinuxLinuxa1270fe95b74eb3195b107c494ed1f11b932a278 < 7560ed6592ff4077528c239c71e91b19de985b97affected
LinuxLinuxa1270fe95b74eb3195b107c494ed1f11b932a278 < e3e6e252d74f20f6fc610c7fef3ae7dda0109a6faffected
LinuxLinuxa1270fe95b74eb3195b107c494ed1f11b932a278 < f2065b8b0a215bc6aa061287a2e3d9eab2446422affected
LinuxLinuxa1270fe95b74eb3195b107c494ed1f11b932a278 < edf37bc8b03d3f948e679b2fd2d14464495f5d1baffected
LinuxLinuxa1270fe95b74eb3195b107c494ed1f11b932a278 < 23acb14af1914010dd0aae1bbb7fab28bf518b8eaffected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.244 <= 5.4.*unaffected
LinuxLinux5.10.181 <= 5.10.*unaffected
LinuxLinux5.15.113 <= 5.15.*unaffected
LinuxLinux6.1.30 <= 6.1.*unaffected
LinuxLinux6.3.4 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References