CVE-2023-1077
Advisory lineage Upstream: 0 Downstream: 56
Modified
Published: 27 Mar 2023, 00:00
Last modified:02 Aug 2024, 05:32
Vulnerability Summary
Overall Risk (default)
medium
28/100 CVSS Score
7 HIGH
v3.1 (nvd)
EPSS Score
0.02% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
27 Mar 2023, 00:00
Published
Vulnerability first disclosed
02 Aug 2024, 05:32
Last Modified
Vulnerability information updated
Description
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused sched_rt_entity,causing memory corruption.
CVSS Metrics
- v3.1•HIGH•Score: 7CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Trends
Current EPSS score: 0.02%• Percentile: 7%
Techniques & Countermeasures
- CWE-843•Access of Resource Using Incompatible Type ('Type Confusion')
The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.
Affected Systems
- debian•debian_linux
10.0
- linux•linux_kernel
≥ 2.6.25, < 4.19.293 | ≥ 4.20, < 5.4.235 | ≥ 5.5, < 5.10.173 | ≥ 5.11, < 5.15.99 | ≥ 5.16, < 6.1.16 | ≥ 6.2, < 6.2.3
- netapp•8300_firmware
na
- netapp•8700_firmware
na
- netapp•a400_firmware
na
- netapp•a700s_firmware
na
- netapp•c400_firmware
na
- netapp•h300s_firmware
na
- netapp•h410c_firmware
na
- netapp•h410s_firmware
na
- netapp•h500s_firmware
na
- netapp•h700s_firmware
na
References (4)
- https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=7c4a5b89a0b5a57a64b601775b296abf77a9fe97
- https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html
- https://security.netapp.com/advisory/ntap-20230511-0002/
- https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html