UBUNTU-CVE-2023-50431
Advisory lineage Upstream: 1 Downstream: 3
Upstream
Downstream
Published: 09 Dec 2023, 23:15
Last modified:06 Feb 2026, 20:39
Vulnerability Summary
Overall Risk (default)
low
22/100 CVSS Score
5.5 MEDIUM
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
09 Dec 2023, 23:15
Published
Vulnerability first disclosed
06 Feb 2026, 20:39
Last Modified
Vulnerability information updated
Description
sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in the Linux kernel through 6.6.5 allows an information leak to user space because info->pad0 is not initialized.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Systems
- ubuntu•linux-allwinner-5.19
all
- ubuntu•linux-aws-5.0
all
- ubuntu•linux-aws-5.11
all
- ubuntu•linux-aws-5.13
all
- ubuntu•linux-aws-5.19
all
- ubuntu•linux-aws-5.3
all
- ubuntu•linux-aws-5.8
all
- ubuntu•linux-aws-6.2
all
- ubuntu•linux-aws-6.5
< 6.5.0-1017.17~22.04.2
- ubuntu•linux-azure
all
- ubuntu•linux-azure-5.11
all
- ubuntu•linux-azure-5.13
all
- ubuntu•linux-azure-5.19
all
- ubuntu•linux-azure-5.3
all
- ubuntu•linux-azure-5.8
all
- ubuntu•linux-azure-6.2
all
- ubuntu•linux-azure-6.5
< 6.5.0-1018.19~22.04.2
- ubuntu•linux-azure-edge
all
- ubuntu•linux-azure-fde
all
- ubuntu•linux-azure-fde-5.19
all
- ubuntu•linux-azure-fde-6.2
all
- ubuntu•linux-gcp
all
- ubuntu•linux-gcp-5.11
all
- ubuntu•linux-gcp-5.13
all
- ubuntu•linux-gcp-5.19
all
- ubuntu•linux-gcp-5.3
all
- ubuntu•linux-gcp-5.8
all
- ubuntu•linux-gcp-6.2
all
- ubuntu•linux-gcp-6.5
< 6.5.0-1017.17~22.04.1
- ubuntu•linux-gke
all
- ubuntu•linux-gke-4.15
all
- ubuntu•linux-gke-5.15
all
- ubuntu•linux-gke-5.4
all
- ubuntu•linux-gkeop-5.4
all
- ubuntu•linux-hwe
all
- ubuntu•linux-hwe-5.11
all
- ubuntu•linux-hwe-5.13
all
- ubuntu•linux-hwe-5.19
all
- ubuntu•linux-hwe-5.8
all
- ubuntu•linux-hwe-6.2
all
- ubuntu•linux-hwe-6.5
< 6.5.0-27.28~22.04.1
- ubuntu•linux-hwe-edge
all
- ubuntu•linux-intel-5.13
all
- ubuntu•linux-intel-iot-realtime
all
- ubuntu•linux-lowlatency-hwe-5.19
all
- ubuntu•linux-lowlatency-hwe-6.2
all
- ubuntu•linux-lowlatency-hwe-6.5
< 6.5.0-27.28.1~22.04.1
- ubuntu•linux-nvidia-6.2
all
- ubuntu•linux-nvidia-6.5
< 6.5.0-1014.14
- ubuntu•linux-oem
all
Showing first 50 affected entries in server-rendered view.
References (7)
- https://ubuntu.com/security/CVE-2023-50431
- https://lists.freedesktop.org/archives/dri-devel/2023-November/431772.html
- https://lore.kernel.org/all/20231208130059.424735-1-hdthky0@gmail.com/
- https://ubuntu.com/security/notices/USN-6688-1
- https://ubuntu.com/security/notices/USN-6724-1
- https://www.cve.org/CVERecord?id=CVE-2023-50431
- https://ubuntu.com/security/notices/USN-6724-2