CVE-2023-53555
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/core: initialize damo_filter->list from damos_new_filter()
damos_new_filter() is not initializing the list field of newly allocated filter object. However, DAMON sysfs interface and DAMON_RECLAIM are not initializing it after calling damos_new_filter(). As a result, accessing uninitialized memory is possible. Actually, adding multiple DAMOS filters via DAMON sysfs interface caused NULL pointer dereferencing. Initialize the field just after the allocation from damos_new_filter().
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 98def236f63c66629fb6b2d4b69cecffc5b46539 < da7beebb49c643cd03c54447ed66595936a7a1ce | affected |
| Linux | Linux | 98def236f63c66629fb6b2d4b69cecffc5b46539 < 5f1fc67f2cb8d3035d3acd273b48b97835af8afd | affected |
| Linux | Linux | 6.3 | affected |
| Linux | Linux | 0 < 6.3 | unaffected |
| Linux | Linux | 6.4.11 <= 6.4.* | unaffected |
| Linux | Linux | 6.5 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/da7beebb49c643cd03c54447ed66595936a7a1ce
- https://git.kernel.org/stable/c/5f1fc67f2cb8d3035d3acd273b48b97835af8afd
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.