CVE-2023-46862

medium

Description

An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an io_uring/fdinfo.c io_uring_show_fdinfo NULL pointer dereference can occur.

References

https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html

https://github.com/torvalds/linux/commit/7644b1a1c9a7ae8ab99175989bfc8676055edb46

https://bugzilla.kernel.org/show_bug.cgi?id=218032#c4

Details

Source: Mitre, NVD

Published: 2023-10-29

Updated: 2024-01-11

Risk Information

CVSS v2

Base Score: 3.8

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:N/A:C

Severity: Low

CVSS v3

Base Score: 4.7

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

Detections

Analytics