CVE-2023-52795 | Linux Kernel up to 6.1.63/6.5.12/6.6.2 vhost-vdpa vhost_vdpa_probe use after free

Posted by Angelo Barbosa | May 21, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.1.63/6.5.12/6.6.2. Affected by this issue is the function vhost_vdpa_probe of the component vhost-vdpa. The manipulation leads to use after free.

This vulnerability is handled as CVE-2023-52795. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-52795 | Linux Kernel up to 6.1.63/6.5.12/6.6.2 vhost-vdpa vhost_vdpa_probe use after free

Related Posts

VDB-267525 | Trojan.Win32.DarkGateLoader urlmon.dll uncontrolled search path

CVE-2024-36503 | Huawei HarmonyOS/EMUI Gralloc Module uninitialized resource

CVE-2023-51599 | Honeywell Saia PG5 Controls Suite path traversal (ZDI-23-1848)

CVE-2024-36197 | Adobe Experience Manager up to 6.5.20 Link cross site scripting (apsb24-28)