CVE-2023-1872
HIGHLinux Kernel 5.7-5.16 - Use-After-Free in io_uring Fixed File Handling
Title source: llmDescription
A use-after-free vulnerability in the Linux Kernel io_uring system can be exploited to achieve local privilege escalation. The io_file_get_fixed function lacks the presence of ctx->uring_lock which can lead to a Use-After-Free vulnerability due a race condition with fixed files getting unregistered. We recommend upgrading past commit da24142b1ef9fd5d36b76e36bab328a5b27523e8.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html
Mailing List, Product
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-5.10.y&id=08681391b84da27133deefaaddefd0acfa90c2be
Mailing List, Patch
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-5.10.y&id=da24142b1ef9fd5d36b76e36bab328a5b27523e8
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html
Third Party Advisory
https://security.netapp.com/advisory/ntap-20230601-0002/
Scores
CVSS v3
7.8
EPSS
0.0003
EPSS Percentile
8.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (2)
debian/debian_linux
10.0
linux/linux_kernel
5.7 - 5.17
Published
Apr 12, 2023
Tracked Since
Feb 18, 2026