CVE-2023-0459Release of Invalid Pointer or Reference in Kernel

CWE-763Release of Invalid Pointer or ReferenceCWE-402Resource Leak45 documents9 sources
Severity
5.5MEDIUMNVD
OSV4.7
EPSS
0.0%
top 98.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Linux KernelDebian LinuxPaloalto Pan-os+6 more
Timeline
PublishedMay 25
Latest updateFeb 14

Description

Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We recommend upgrading beyond commit 74e19ef0ff8061ef55957c3abd71614ef0f42f47

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages12 packages

NVDlinux/linux_kernel4.19.04.19.274+6
Debianlinux/linux_kernel< 5.10.178-1+3
Ubuntulinux/linux_kernel< 4.15.0-211.222+2
CVEListV5linux/linux_kernel4b842e4e25b12951fa10dedb4bc16bc47e3b850c74e19ef0ff8061ef55957c3abd71614ef0f42f47

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

21
OSV
linux-iot vulnerabilities2023-07-27
OSV
linux-oem-6.0 vulnerabilities2023-07-18
OSV
linux-xilinx-zynqmp vulnerabilities2023-07-12
GHSA
GHSA-82f5-ghc6-rj5c: Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check an2023-07-06
OSV
linux-oem-5.17 vulnerabilities2023-06-16

📋Vendor Advisories

22
Palo Alto
PAN-SA-2024-0001 Informational Bulletin: Impact of OSS CVEs in PAN-OS2024-02-14
Ubuntu
Linux kernel (IoT) vulnerabilities2023-07-27
Ubuntu
Linux kernel (OEM) vulnerabilities2023-07-18
Ubuntu
Linux kernel (Xilinx ZynqMP) vulnerabilities2023-07-12
Ubuntu
Linux kernel (OEM) vulnerabilities2023-06-16

💬Community

1
Bugzilla
CVE-2023-0459 kernel: Copy_from_user on 64-bit versions may leak kernel information2023-06-21
CVE-2023-0459 — Release of Invalid Pointer or Reference | cvebase