CVE-2023-2236

HIGH

Linux Kernel 5.19-6.0.11 - Use-After-Free in io_uring Subsystem

Title source: llm

Description

A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Both io_install_fixed_file and its callers call fput in a file in case of an error, causing a reference underflow which leads to a use-after-free vulnerability. We recommend upgrading past commit 9d94c04c0db024922e886c9fd429659f22f48ea4.

References (3)

Core 3

Core References

Exploit, Patch

https://kernel.dance/9d94c04c0db024922e886c9fd429659f22f48ea4

Vendor Advisory

https://security.netapp.com/advisory/ntap-20230601-0010/

Exploit, Mailing List, Patch patch

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=9d94c04c0db024922e886c9fd429659f22f48ea4

Scores

CVSS v3 7.8

EPSS 0.0003

EPSS Percentile 10.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (6)

linux/linux_kernel 5.19 - 6.0.11

netapp/hci_baseboard_management_controller h300s

netapp/hci_baseboard_management_controller h410c

netapp/hci_baseboard_management_controller h410s

netapp/hci_baseboard_management_controller h500s

netapp/hci_baseboard_management_controller h700s

Published May 01, 2023

Tracked Since Feb 18, 2026