CVE-2023-53377
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
cifs: prevent use-after-free by freeing the cfile later
In smb2_compound_op we have a possible use-after-free which can cause hard to debug problems later on.
This was revealed during stress testing with KASAN enabled kernel. Fixing it by moving the cfile free call to a few lines below, after the usage.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 76894f3e2f71177747b8b4763fb180e800279585 < 4fe07d55a5461e66a55fbefb57f85ff0facea32b | affected |
| Linux | Linux | 76894f3e2f71177747b8b4763fb180e800279585 < b6353518ef8180816e863aa23b06456f395404d6 | affected |
| Linux | Linux | 76894f3e2f71177747b8b4763fb180e800279585 < d017880782cf71f8820ee4a2002843893176501d | affected |
| Linux | Linux | 76894f3e2f71177747b8b4763fb180e800279585 < 33f736187d08f6bc822117629f263b97d3df4165 | affected |
| Linux | Linux | 2d046892a493d9760c35fdaefc3017f27f91b621 | affected |
| Linux | Linux | 6.0.16 < 6.1 | affected |
| Linux | Linux | 6.1 | affected |
| Linux | Linux | 0 < 6.1 | unaffected |
| Linux | Linux | 6.1.39 <= 6.1.* | unaffected |
| Linux | Linux | 6.3.13 <= 6.3.* | unaffected |
| Linux | Linux | 6.4.4 <= 6.4.* | unaffected |
| Linux | Linux | 6.5 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://git.kernel.org/stable/c/4fe07d55a5461e66a55fbefb57f85ff0facea32b
- https://git.kernel.org/stable/c/b6353518ef8180816e863aa23b06456f395404d6
- https://git.kernel.org/stable/c/d017880782cf71f8820ee4a2002843893176501d
- https://git.kernel.org/stable/c/33f736187d08f6bc822117629f263b97d3df4165
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.