vulnerability

Ubuntu: (CVE-2023-52654): linux-nvidia-6.5 vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:N/I:N/A:C)	2024-05-14	2024-11-19	2025-02-20

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

2024-05-14

Added

2024-11-19

Modified

2025-02-20

Description

In the Linux kernel, the following vulnerability has been resolved:

io_uring/af_unix: disable sending io_uring over sockets

File reference cycles have caused lots of problems for io_uring
in the past, and it still doesn't work exactly right and races with
unix_stream_read_generic(). The safest fix would be to completely
disallow sending io_uring files via sockets via SCM_RIGHT, so there
are no possible cycles invloving registered files and thus rendering
SCM accounting on the io_uring side unnecessary.

Solution

ubuntu-upgrade-linux-nvidia-6-5

References

CVE-2023-52654
https://attackerkb.com/topics/CVE-2023-52654
URL-https://git.kernel.org/linus/705318a99a138c29a512a72c3e0043b3cd7f55f4
URL-https://www.cve.org/CVERecord?id=CVE-2023-52654

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today