CVE-2023-3389

CWE-416Use After Free15 documents8 sources
Severity
7.8HIGH
EPSS
0.0%
top 94.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Linux KernelLinux Linux KernelCanonical Ubuntu Linux+1 more
Timeline
PublishedJun 28
Latest updateSep 5

Description

A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable).

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5linux/kernel5.136.4+1
NVDlinux/linux_kernel5.10.1625.10.185+1
Debianlinux< 5.10.191-1+3

Also affects: Debian Linux 10.0, 11.0, Ubuntu Linux 14.04, 16.04, 18.04, 20.04, 22.04

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

4
OSV
linux-oem-6.1 vulnerabilities2023-07-25
CVEList
Use after free in io_uring in the Linux Kernel2023-06-28
OSV
CVE-2023-3389: A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation2023-06-28
GHSA
GHSA-9787-f568-7rr2: A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation2023-06-28

📋Vendor Advisories

10
Ubuntu
Kernel Live Patch Security Notice2023-09-05
Ubuntu
Linux kernel vulnerabilities2023-07-27
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2023-07-26
Ubuntu
Linux kernel (OEM) vulnerabilities2023-07-25
Ubuntu
Linux kernel (OEM) vulnerabilities2023-07-25
CVE-2023-3389 (HIGH CVSS 7.8) | A use-after-free vulnerability in t | cvebase.io