CVE-2023-0458: Spectre V1 Gadget in do_prlimit in the Linux Kernel
First published: Wed Apr 26 2023(Updated: )
A speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or commit 739790605705ddcf18f21782b9c99ad7d53a8c11
Credit: cve-coordination@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <6.2 | 6.2 |
| Linux Kernel | <6.1.8 | |
| Linux Kernel | =6.2-rc1 | |
| Linux Kernel | =6.2-rc2 | |
| Linux Kernel | =6.2-rc3 | |
| Linux Kernel | =6.2-rc4 | |
| Debian GNU/Linux | =10.0 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.15-1 | |
| IBM Security Verify Governance - Identity Manager | <=ISVG 10.0.2 | |
| IBM Security Verify Governance, Identity Manager | <=ISVG 10.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/diff/kernel/sys.c?id=v6.1.8&id2=v6.1.7
- https://github.com/torvalds/linux/commit/739790605705ddcf18f21782b9c99ad7d53a8c11
- https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html
- https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/diff/kernel/sys.c?id=v6.1.8&id2=v6.1.7
- https://launchpad.net/bugs/cve/CVE-2023-0458
- https://access.redhat.com/errata/RHSA-2023:4378
- https://access.redhat.com/errata/RHSA-2023:4377
- https://access.redhat.com/errata/RHSA-2023:4814
- https://access.redhat.com/errata/RHSA-2023:4801
- https://access.redhat.com/errata/RHSA-2023:6901
- https://access.redhat.com/errata/RHSA-2023:7077
- https://access.redhat.com/errata/RHSA-2024:0575
- https://access.redhat.com/errata/RHSA-2024:0724
- https://bugzilla.redhat.com/show_bug.cgi?id=2193219
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0458
- https://nvd.nist.gov/vuln/detail/CVE-2023-0458
- https://security-tracker.debian.org/tracker/CVE-2023-0458
- https://ubuntu.com/security/CVE-2023-0458
- https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh
- https://git.kernel.org/linus/739790605705ddcf18f21782b9c99ad7d53a8c11
- https://www.ibm.com/support/pages/node/7172423 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2023-0458?
CVE-2023-0458 is considered to have a high severity due to the potential for information leakage.
How do I fix CVE-2023-0458?
To fix CVE-2023-0458, upgrade to the Linux kernel version 6.2 or higher.
Which software is affected by CVE-2023-0458?
CVE-2023-0458 affects the Linux Kernel versions prior to 6.1.8 and specific versions of IBM Security Verify Governance and Identity Manager.
What is the nature of the vulnerability in CVE-2023-0458?
CVE-2023-0458 is a speculative pointer dereference issue that can be exploited to leak sensitive data.
Can CVE-2023-0458 be exploited remotely?
CVE-2023-0458 can potentially be exploited locally, making it a concern for systems that allow untrusted user access.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/weakness
- agent/title
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-0458
- agent/software-canonical-lookup
- agent/remedy
- agent/first-publish-date
- agent/trending
- agent/source
- agent/severity
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/security-tracker-debian
- source/Debian
- agent/tags
- agent/softwarecombine
- agent/event
- collector/ibm-support
- source/IBM
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/6.2-rc1
- version/linux kernel/6.2-rc2
- version/linux kernel/6.2-rc3
- version/linux kernel/6.2-rc4
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/10.0
- package-manager/debian
- vendor/ibm
- canonical/ibm security verify governance - identity manager
- version/ibm security verify governance - identity manager/isvg 10.0.2
- canonical/ibm security verify governance, identity manager
- version/ibm security verify governance, identity manager/isvg 10.0.2