CVE-2023-52462 : In the Linux kernel, the following vulnerability has been resolved: bpf: fix ch

In the Linux kernel, the following vulnerability has been resolved: bpf: fix check for attempt to corrupt spilled pointer When register is spilled onto a stack as a 1/2/4-byte register, we set slot_type[BPF_REG_SIZE - 1] (plus potentially few more below it, depending on actual spill size). So to check if some stack slot has spilled register we need to consult slot_type[7], not slot_type[0]. To avoid the need to remember and double-check this in the future, just use is_spilled_reg() helper.

Published 2024-02-23 15:15:09

Updated 2024-11-05 16:35:06

Source Linux

View at NVD, CVE.org

Products affected by CVE-2023-52462

Linux » Linux Kernel
Versions from including (>=) 6.7.0 and before (<) 6.7.2
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.16.0 and before (<) 6.1.75
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions before (<) 5.10.209
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2.0 and before (<) 6.6.14
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.11.0 and before (<) 5.15.148
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-52462

EPSS FAQ

0.02%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 4 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-52462

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N	1.8	3.6	NIST	2024-04-17
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

CWE ids for CVE-2023-52462

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

Assigned by: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

References for CVE-2023-52462

https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html

[SECURITY] [DLA 3841-1] linux-5.10 security update

CVEs referencing this url
https://git.kernel.org/stable/c/67e6707f07354ed1acb4e65552e97c60cf9d69cf

bpf: fix check for attempt to corrupt spilled pointer - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/40617d45ea05535105e202a8a819e388a2b1f036

bpf: fix check for attempt to corrupt spilled pointer - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/2757f17972d87773b3677777f5682510f13c66ef

bpf: fix check for attempt to corrupt spilled pointer - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/ab125ed3ec1c10ccc36bc98c7a4256ad114a3dae

bpf: fix check for attempt to corrupt spilled pointer - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/8dc15b0670594543c356567a1a45b0182ec63174

bpf: fix check for attempt to corrupt spilled pointer - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/fc3e3c50a0a4cac1463967c110686189e4a59104

bpf: fix check for attempt to corrupt spilled pointer - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2023-52462

Products affected by CVE-2023-52462

Exploit prediction scoring system (EPSS) score for CVE-2023-52462

CVSS scores for CVE-2023-52462

CWE ids for CVE-2023-52462

References for CVE-2023-52462