A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw could allow a local attacker to crash the system, and could even lead to a kernel information leak problem.
References
Link | Resource |
---|---|
https://lore.kernel.org/netdev/20220516084213.26854-1-jasowang%40redhat.com/T/ | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20230517-0003/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2023-04-05T00:00:00
Updated: 2023-05-17T00:00:00
Reserved: 2023-04-04T00:00:00
Link: CVE-2023-1838
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-05T19:15:07.793
Modified: 2024-02-15T15:56:40.963
Link: CVE-2023-1838
JSON object: View
Redhat Information
No data.
CWE