CVE-2023-54046
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
crypto: essiv - Handle EBUSY correctly
As it is essiv only handles the special return value of EINPROGERSS, which means that in all other cases it will free data related to the request.
However, as the caller of essiv may specify MAY_BACKLOG, we also need to expect EBUSY and treat it in the same way. Otherwise backlogged requests will trigger a use-after-free.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | be1eb7f78aa8fbe34779c56c266ccd0364604e71 < c61e7d182ee3f3f5ecf18a2964e303d49c539b52 | affected |
| Linux | Linux | be1eb7f78aa8fbe34779c56c266ccd0364604e71 < 796e02cca30a67322161f0745e5ce994bbe75605 | affected |
| Linux | Linux | be1eb7f78aa8fbe34779c56c266ccd0364604e71 < 840a1d3b77c1b062bd62b4733969a5b1efc274ce | affected |
| Linux | Linux | be1eb7f78aa8fbe34779c56c266ccd0364604e71 < a006aa3eedb8bfd6fe317c3cfe9c86ffe76b2385 | affected |
| Linux | Linux | be1eb7f78aa8fbe34779c56c266ccd0364604e71 < 69c67d451fc19d88e54f7d97e8e7c093e08357e1 | affected |
| Linux | Linux | be1eb7f78aa8fbe34779c56c266ccd0364604e71 < b5a772adf45a32c68bef28e60621f12617161556 | affected |
| Linux | Linux | 5.4 | affected |
| Linux | Linux | 0 < 5.4 | unaffected |
| Linux | Linux | 5.4.235 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.173 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.99 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.16 <= 6.1.* | unaffected |
| Linux | Linux | 6.2.3 <= 6.2.* | unaffected |
| Linux | Linux | 6.3 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/c61e7d182ee3f3f5ecf18a2964e303d49c539b52
- https://git.kernel.org/stable/c/796e02cca30a67322161f0745e5ce994bbe75605
- https://git.kernel.org/stable/c/840a1d3b77c1b062bd62b4733969a5b1efc274ce
- https://git.kernel.org/stable/c/a006aa3eedb8bfd6fe317c3cfe9c86ffe76b2385
- https://git.kernel.org/stable/c/69c67d451fc19d88e54f7d97e8e7c093e08357e1
- https://git.kernel.org/stable/c/b5a772adf45a32c68bef28e60621f12617161556
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.