CVE-2023-54101

Summary

In the Linux kernel, the following vulnerability has been resolved:

driver: soc: xilinx: use _safe loop iterator to avoid a use after free

The hash_for_each_possible() loop dereferences "eve_data" to get the next item on the list. However the loop frees eve_data so it leads to a use after free. Use hash_for_each_possible_safe() instead.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc7fdb2404f66131bc9c22e06f712717288826487 < 49fca83f6f3f0cafe5bf5b43e8ee81cf73c2d5e0affected
LinuxLinuxc7fdb2404f66131bc9c22e06f712717288826487 < f16599e638073ef0b2828bb64f5e99138e9381b5affected
LinuxLinuxc7fdb2404f66131bc9c22e06f712717288826487 < 256aace3a5d8c987183ba4832dffb36f48ea7d3baffected
LinuxLinuxc7fdb2404f66131bc9c22e06f712717288826487 < c58da0ba3e5c86e51e2c1557afaf6f71e00c4533affected
LinuxLinux5.17affected
LinuxLinux0 < 5.17unaffected
LinuxLinux6.1.39 <= 6.1.*unaffected
LinuxLinux6.3.13 <= 6.3.*unaffected
LinuxLinux6.4.4 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References