A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to crash the system, causing a denial of service condition.
References
Configurations
History
22 May 2024, 17:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Apr 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
08 Aug 2023, 14:29
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2221702 - Issue Tracking | |
References | (MISC) https://access.redhat.com/security/cve/CVE-2023-4133 - Vendor Advisory | |
First Time |
Fedoraproject
Linux Redhat Linux linux Kernel Fedoraproject fedora Redhat enterprise Linux |
|
CPE | cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
|
CWE | CWE-416 |
03 Aug 2023, 15:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-03 15:15
Updated : 2024-05-22 17:16
NVD link : CVE-2023-4133
Mitre link : CVE-2023-4133
CVE.ORG link : CVE-2023-4133
JSON object : View
Products Affected
linux
- linux_kernel
fedoraproject
- fedora
redhat
- enterprise_linux
CWE
CWE-416
Use After Free