CVE-2023-31083 — Race Condition in Linux

CWE-362 — Race Condition CWE-476 — NULL Pointer Dereference34 documents7 sources

Severity

4.7MEDIUMNVD

OSV9.8OSV7.0OSV5.7OSV5.5

EPSS

0.0%

top 99.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Debian Linux-6.1

Timeline

PublishedApr 24

Latest updateNov 28

Description

An issue was discovered in drivers/bluetooth/hci_ldisc.c in the Linux kernel 6.2. In hci_uart_tty_ioctl, there is a race condition between HCIUARTSETPROTO and HCIUARTGETPROTO. HCI_UART_PROTO_SET is set before hu->proto is set. A NULL pointer dereference may occur.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages5 packages

▶Debianlinux/linux_kernel< 5.10.226-1+3

▶Ubuntulinux/linux_kernel< 5.4.0-166.183+3

▶NVDlinux/linux_kernel6.2

▶debiandebian/linux< linux 6.1.112-1 (bookworm)

▶debiandebian/linux-6.1< linux 6.1.112-1 (bookworm)

🔴Vulnerability Details

OSV

linux-starfive-6.2 vulnerabilities↗2023-11-28

▶

OSV

linux-intel-iotg, linux-intel-iotg-5.15 vulnerabilities↗2023-11-27

▶

OSV

linux-iot vulnerabilities↗2023-11-10

▶

OSV

linux-gke vulnerabilities↗2023-11-10

▶

OSV

linux-raspi vulnerabilities↗2023-11-01

▶

📋Vendor Advisories

Ubuntu

Linux kernel (StarFive) vulnerabilities↗2023-11-28

▶

Ubuntu

Linux kernel (Intel IoTG) vulnerabilities↗2023-11-27

▶

Ubuntu

Linux kernel (GKE) vulnerabilities↗2023-11-10

▶

Ubuntu

Linux kernel (IoT) vulnerabilities↗2023-11-10

▶

Ubuntu

Linux kernel (Raspberry Pi) vulnerabilities↗2023-11-01

▶

💬Community

Bugzilla

CVE-2023-31083 kernel: race condition between HCIUARTSETPROTO and HCIUARTGETPROTO in hci_uart_tty_ioctl↗2023-06-07

▶