CVE-2023-1077

First published: Mon Mar 27 2023(Updated: )

In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused sched_rt_entity,causing memory corruption.

Credit: secalert@redhat.com secalert@redhat.com secalert@redhat.com

Affected Software	Affected Version	How to fix
Linux Linux kernel	>=2.6.25<4.19.293
Linux Linux kernel	>=4.20<5.4.235
Linux Linux kernel	>=5.5<5.10.173
Linux Linux kernel	>=5.11<5.15.99
Linux Linux kernel	>=5.16<6.1.16
Linux Linux kernel	>=6.2<6.2.3
Debian Debian Linux	=10.0
All of
Netapp A700s Firmware
Netapp A700s
All of
Netapp 8300 Firmware
Netapp 8300
All of
Netapp 8700 Firmware
Netapp 8700
All of
Netapp A400 Firmware
Netapp A400
All of
Netapp C400 Firmware
Netapp C400
All of
Netapp H300s Firmware
Netapp H300s
All of
Netapp H500s Firmware
Netapp H500s
All of
Netapp H700s Firmware
Netapp H700s
All of
Netapp H410s Firmware
Netapp H410s
All of
Netapp H410c Firmware
Netapp H410c
Linux Linux kernel
Netapp A700s Firmware
Netapp A700s
Netapp 8300 Firmware
Netapp 8300
Netapp 8700 Firmware
Netapp 8700
Netapp A400 Firmware
Netapp A400
Netapp C400 Firmware
Netapp C400
Netapp H300s Firmware
Netapp H300s
Netapp H500s Firmware
Netapp H500s
Netapp H700s Firmware
Netapp H700s
Netapp H410s Firmware
Netapp H410s
Netapp H410c Firmware
Netapp H410c
debian/linux		5.10.218-1 5.10.221-1 6.1.94-1 6.1.99-1 6.9.10-1 6.9.12-1
ubuntu/linux	<5.4.0-152.169	5.4.0-152.169
ubuntu/linux	<5.15.0-75.82	5.15.0-75.82
ubuntu/linux	<5.19.0-45.46	5.19.0-45.46
ubuntu/linux	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws	<5.4.0-1104.112	5.4.0-1104.112
ubuntu/linux-aws	<5.15.0-1038.43	5.15.0-1038.43
ubuntu/linux-aws	<5.19.0-1027.28	5.19.0-1027.28
ubuntu/linux-aws	<6.2.0-1003.3	6.2.0-1003.3
ubuntu/linux-aws	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws-5.0	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws-5.15	<5.15.0-1038.43~20.04.1	5.15.0-1038.43~20.04.1
ubuntu/linux-aws-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws-fips	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-aws-hwe	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure	<5.4.0-1110.116	5.4.0-1110.116
ubuntu/linux-azure	<5.15.0-1040.47	5.15.0-1040.47
ubuntu/linux-azure	<5.19.0-1028.31	5.19.0-1028.31
ubuntu/linux-azure	<6.2.0-1003.3	6.2.0-1003.3
ubuntu/linux-azure	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-4.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-5.15	<5.15.0-1040.47~20.04.1	5.15.0-1040.47~20.04.1
ubuntu/linux-azure-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-5.4	<5.4.0-1110.116~18.04.1	5.4.0-1110.116~18.04.1
ubuntu/linux-azure-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-edge	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-fde	<5.15.0-1041.48.1	5.15.0-1041.48.1
ubuntu/linux-azure-fde	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-fde-5.15	<5.15.0-1040.47~20.04.1.1	5.15.0-1040.47~20.04.1.1
ubuntu/linux-azure-fde-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-azure-fips	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-bluefield	<5.4.0-1065.71	5.4.0-1065.71
ubuntu/linux-bluefield	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-dell300x	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-fips	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gcp	<5.4.0-1107.116	5.4.0-1107.116
ubuntu/linux-gcp	<5.15.0-1036.44	5.15.0-1036.44
ubuntu/linux-gcp	<5.19.0-1026.28	5.19.0-1026.28
ubuntu/linux-gcp	<6.2.0-1005.5	6.2.0-1005.5
ubuntu/linux-gcp	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gcp-4.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gcp-5.15	<5.15.0-1036.44~20.04.1	5.15.0-1036.44~20.04.1
ubuntu/linux-gcp-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gcp-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gcp-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gcp-fips	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gke	<5.4.0-1102.109	5.4.0-1102.109
ubuntu/linux-gke	<5.15.0-1036.41	5.15.0-1036.41
ubuntu/linux-gke	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gke-4.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gke-5.0	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gke-5.15	<5.15.0-1036.41~20.04.1	5.15.0-1036.41~20.04.1
ubuntu/linux-gke-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gke-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gkeop	<5.4.0-1071.75	5.4.0-1071.75
ubuntu/linux-gkeop	<5.15.0-1022.27	5.15.0-1022.27
ubuntu/linux-gkeop	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gkeop-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-gkeop-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-hwe	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-hwe-5.15	<5.15.0-75.82~20.04.1	5.15.0-75.82~20.04.1
ubuntu/linux-hwe-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-hwe-5.19	<5.19.0-45.46~22.04.1	5.19.0-45.46~22.04.1
ubuntu/linux-hwe-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-hwe-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-hwe-edge	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-ibm	<5.4.0-1051.56	5.4.0-1051.56
ubuntu/linux-ibm	<5.15.0-1032.35	5.15.0-1032.35
ubuntu/linux-ibm	<5.19.0-1024.26	5.19.0-1024.26
ubuntu/linux-ibm	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-ibm-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-ibm-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-intel	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-intel-5.13	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-intel-iotg	<5.15.0-1033.38	5.15.0-1033.38
ubuntu/linux-intel-iotg	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-intel-iotg-5.15	<5.15.0-1033.38~20.04.1	5.15.0-1033.38~20.04.1
ubuntu/linux-intel-iotg-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-iot	<5.4.0-1017.18	5.4.0-1017.18
ubuntu/linux-iot	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-kvm	<5.4.0-1093.99	5.4.0-1093.99
ubuntu/linux-kvm	<5.15.0-1035.40	5.15.0-1035.40
ubuntu/linux-kvm	<5.19.0-1025.26	5.19.0-1025.26
ubuntu/linux-kvm	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-laptop	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-lowlatency	<5.15.0-75.82	5.15.0-75.82
ubuntu/linux-lowlatency	<5.19.0-1027.28	5.19.0-1027.28
ubuntu/linux-lowlatency	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-lowlatency-hwe-5.15	<5.15.0-75.82~20.04.1	5.15.0-75.82~20.04.1
ubuntu/linux-lowlatency-hwe-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-lowlatency-hwe-5.19	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-lowlatency-hwe-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-lts-xenial	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-nvidia	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-nvidia-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-nvidia-6.8	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-nvidia-lowlatency	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-5.10	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-5.14	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-5.17	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-5.6	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-6.0	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-6.1	<6.1.0-1009.9	6.1.0-1009.9
ubuntu/linux-oem-6.1	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-6.8	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oem-osp1	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oracle	<5.4.0-1103.112	5.4.0-1103.112
ubuntu/linux-oracle	<5.15.0-1037.43	5.15.0-1037.43
ubuntu/linux-oracle	<5.19.0-1025.28	5.19.0-1025.28
ubuntu/linux-oracle	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oracle-5.0	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oracle-5.13	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oracle-5.15	<5.15.0-1037.43~20.04.1	5.15.0-1037.43~20.04.1
ubuntu/linux-oracle-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oracle-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-oracle-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-raspi	<5.4.0-1088.99	5.4.0-1088.99
ubuntu/linux-raspi	<5.15.0-1032.35	5.15.0-1032.35
ubuntu/linux-raspi	<5.19.0-1021.28	5.19.0-1021.28
ubuntu/linux-raspi	<6.2.0-1004.5	6.2.0-1004.5
ubuntu/linux-raspi	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-raspi-5.4	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-raspi2	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-riscv	<5.19.0-1020.22	5.19.0-1020.22
ubuntu/linux-riscv	<6.2.0-19.19.1	6.2.0-19.19.1
ubuntu/linux-riscv	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-riscv-5.15	<5.15.0-1035.39~20.04.1	5.15.0-1035.39~20.04.1
ubuntu/linux-riscv-5.15	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-riscv-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-snapdragon	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-starfive	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-starfive-6.5	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99
ubuntu/linux-xilinx-zynqmp	<5.4.0-1024.28	5.4.0-1024.28
ubuntu/linux-xilinx-zynqmp	<6.3~<5.4.235<5.15.99	6.3~ 5.4.235 5.15.99

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

agent/type
agent/first-publish-date
agent/author
agent/remedy
agent/weakness
agent/severity
agent/description
collector/launchpad-cve
source/Launchpad
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-cve
collector/nvd-index
agent/references
collector/security-tracker-debian
source/Debian
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/tags
agent/event
collector/usn-cve
source/Ubuntu
vendor/linux
canonical/linux linux kernel
version/linux linux kernel/2.6.25
version/linux linux kernel/4.20
version/linux linux kernel/5.5
version/linux linux kernel/5.11
version/linux linux kernel/5.16
version/linux linux kernel/6.2
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
vendor/netapp
canonical/netapp a700s firmware
canonical/netapp a700s
canonical/netapp 8300 firmware
canonical/netapp 8300
canonical/netapp 8700 firmware
canonical/netapp 8700
canonical/netapp a400 firmware
canonical/netapp a400
canonical/netapp c400 firmware
canonical/netapp c400
canonical/netapp h300s firmware
canonical/netapp h300s
canonical/netapp h500s firmware
canonical/netapp h500s
canonical/netapp h700s firmware
canonical/netapp h700s
canonical/netapp h410s firmware
canonical/netapp h410s
canonical/netapp h410c firmware
canonical/netapp h410c
package-manager/debian
package-manager/ubuntu

CVE-2023-1077

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Company

Resources

Contact