CVE-2023-1252: Use After Free
First published: Tue Mar 07 2023(Updated: )
A flaw found in the Linux Kernel. For the Ext4 file system if overlay FS being used, use after free could happen as result of the race condition. The bug actual if patch 9a2544037600 not applied yet. Example for triggering in a overlay on ext4 setup: aio_read ovl_read_iter vfs_iter_read ext4_file_read_iter ext4_dio_read_iter iomap_dio_rw -> -EIOCBQUEUED /* * Here IO is completed in a separate thread, * ovl_aio_cleanup_handler() frees aio_req which has iocb embedded */ file_accessed(iocb->ki_filp); /**BOOM**/ Reference: <a href="https://lore.kernel.org/lkml/20211115165433.449951285@linuxfoundation.org/">https://lore.kernel.org/lkml/20211115165433.449951285@linuxfoundation.org/</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/Linux kernel | <5.16 | 5.16 |
| Linux Kernel | >=5.6<5.10.80 | |
| Linux Kernel | >=5.11<5.14.19 | |
| Linux Kernel | >=5.15<5.15.3 | |
| IBM Security Verify Governance - Identity Manager | <=ISVG 10.0.2 | |
| IBM Security Verify Governance - Identity Manager | <=ISVG 10.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://lore.kernel.org/lkml/20211115165433.449951285@linuxfoundation.org/
- https://security.netapp.com/advisory/ntap-20230505-0005/
- https://lore.kernel.org/lkml/20211115165433.449951285%40linuxfoundation.org/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2176141
- https://access.redhat.com/errata/RHSA-2023:6583
- https://access.redhat.com/errata/RHSA-2023:6901
- https://access.redhat.com/errata/RHSA-2023:7077
- https://access.redhat.com/errata/RHSA-2024:0724
- https://access.redhat.com/errata/RHSA-2024:8107
- https://access.redhat.com/errata/RHSA-2024:8614
- https://access.redhat.com/errata/RHSA-2024:8613
- https://bugzilla.redhat.com/show_bug.cgi?id=2176140
- https://www.ibm.com/support/pages/node/7172423 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2023-1252?
CVE-2023-1252 has a high severity due to the potential for a use-after-free condition leading to system instability.
How do I fix CVE-2023-1252?
To fix CVE-2023-1252, ensure that the patch identified as 9a2544037600 is applied to your kernel.
Which versions of the Linux kernel are affected by CVE-2023-1252?
CVE-2023-1252 affects Linux kernel versions older than 5.16 if patch 9a2544037600 is not applied.
What systems are impacted by CVE-2023-1252?
CVE-2023-1252 impacts systems using the Ext4 file system with overlay filesystem enabled.
Is CVE-2023-1252 specific to any vendor software?
Yes, CVE-2023-1252 affects IBM's Security Verify Governance, Identity Manager software component up to version 10.0.2.
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/author
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-1252
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/trending
- agent/source
- agent/references
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/ibm-support
- source/IBM
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.6
- version/linux kernel/5.11
- version/linux kernel/5.15
- vendor/ibm
- canonical/ibm security verify governance - identity manager
- version/ibm security verify governance - identity manager/isvg 10.0.2