Description
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesas_usb3_remove in drivers/usb/gadget/udc/renesas_usb3.c.
Exploits (1)
References (6)
Core 6
Core References
Release Notes, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.2
Vendor Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2b947f8769be8b8181dc795fd292d3e7120f5204
Mailing List, Third Party Advisory
https://lore.kernel.org/all/20230327121700.52d881e0%40canb.auug.org.au/
Mailing List, Patch, Third Party Advisory
https://lore.kernel.org/lkml/CAJedcCwkuznS1kSTvJXhzPoavcZDWNhNMshi-Ux0spSVRwU=RA%40mail.gmail.com/T/
Third Party Advisory, VDB Entry
https://security.netapp.com/advisory/ntap-20230803-0002/
Third Party Advisory, VDB Entry mailing-list
https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html
Scores
CVSS v3
7.0
EPSS
0.0003
EPSS Percentile
10.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-362
CWE-416
Status
published
Products (6)
linux/linux_kernel
4.19 - 4.19.283
netapp/h300s
netapp/h410c
netapp/h410s
netapp/h500s
netapp/h700s
Published
Jun 18, 2023
Tracked Since
Feb 18, 2026