CVE-2023-3212 — NULL Pointer Dereference in Kernel

CWE-476 — NULL Pointer Dereference36 documents10 sources

Severity

4.4MEDIUMNVD

OSV7.8OSV7.0OSV6.5OSV4.7OSV4.1

EPSS

0.0%

top 98.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Fedoraproject Fedora +1 more

Timeline

PublishedJun 23

Latest updateFeb 15

Description

A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. A privileged local user could use this flaw to cause a kernel panic.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 0.8 | Impact: 3.6

Affected Packages3 packages

▶NVDlinux/linux_kernel< 6.4+1

▶Debianlinux/linux_kernel< 5.10.191-1+3

▶Ubuntulinux/linux_kernel< 5.4.0-164.181+3

Also affects: Debian Linux 10.0, 11.0, 12.0, Enterprise Linux 8.0, 9.0, Fedora 38

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

OSV

linux-nvidia-6.2 vulnerabilities↗2023-10-31

▶

OSV

linux-azure vulnerabilities↗2023-10-17

▶

OSV

linux-kvm vulnerabilities↗2023-10-05

▶

OSV

linux, linux-aws, linux-aws-6.2, linux-azure, linux-azure-6.2, linux-azure-fde-6.2, linux-gcp, linux-gcp-6.2, linux-hwe-6.2, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-6.2, linux-oracle, linux-↗2023-10-05

▶

OSV

linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linu↗2023-10-04

▶

📋Vendor Advisories

CISA ICS

Siemens SCALANCE XCM-/XRM-300↗2024-02-15

▶

Ubuntu

Linux kernel (NVIDIA) vulnerabilities↗2023-10-31

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2023-10-17

▶

Ubuntu

Linux kernel vulnerabilities↗2023-10-05

▶

Ubuntu

Linux kernel (KVM) vulnerabilities↗2023-10-05

▶

💬Community

Bugzilla

CVE-2023-3212 kernel: gfs2: NULL pointer dereference in gfs2_evict_inode()↗2023-06-12

▶