CVE-2023-5717

A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events (perf) component can be exploited to achieve local privilege escalation. If perf_read_group() is called while an event's sibling_list is smaller than its child's sibling_list, it can increment or write to memory locations outside of the allocated buffer. We recommend upgrading past commit 32671e3799ca2e4590773fd0e63aaa4229e50c06.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/kernel/events?id=32671e3799ca2e4590773fd0e63aaa4229e50c06	Mailing List Patch
https://kernel.dance/32671e3799ca2e4590773fd0e63aaa4229e50c06	Patch
https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html	Mailing List Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.6:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.6:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.6:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.6:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.6:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.6:rc6::::::

History

27 Aug 2024, 15:21

Type	Values Removed	Values Added
References	~~() https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html -~~	() https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html - Mailing List, Third Party Advisory
References	~~() https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html -~~	() https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html - Mailing List, Third Party Advisory

11 Jan 2024, 21:15

Type	Values Removed	Values Added
References		() https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html -

11 Jan 2024, 19:15

Type	Values Removed	Values Added
References		() https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html -

04 Nov 2023, 03:24

Type	Values Removed	Values Added
First Time		Linux Linux linux Kernel
CWE		CWE-787
References	~~(MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/kernel/events?id=32671e3799ca2e4590773fd0e63aaa4229e50c06 -~~	(MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/kernel/events?id=32671e3799ca2e4590773fd0e63aaa4229e50c06 - Mailing List, Patch
References	~~(MISC) https://kernel.dance/32671e3799ca2e4590773fd0e63aaa4229e50c06 -~~	(MISC) https://kernel.dance/32671e3799ca2e4590773fd0e63aaa4229e50c06 - Patch
CPE		cpe:2.3:o:linux:linux_kernel:6.6:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.6:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.6:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.6:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.6:rc4:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.6:rc1::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8

25 Oct 2023, 18:17

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-25 18:17

Updated : 2024-08-27 15:21

NVD link : CVE-2023-5717

Mitre link : CVE-2023-5717

CVE.ORG link : CVE-2023-5717

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-787

Out-of-bounds Write

7.8 /10