CVE & CISA-KEV Catalog

CVE-2023-52845

MEDIUM
5.5
CVSS v3
NVD

Description

In the Linux kernel, the following vulnerability has been resolved: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING syzbot reported the following uninit-value access issue [1]: ===================================================== BUG: KMSAN: uninit-value in strlen lib/string.c:418 [inline] BUG: KMSAN: uninit-value in strstr+0xb8/0x2f0 lib/string.c:756 strlen lib/string.c:418 [inline] strstr+0xb8/0x2f0 lib/string.c:756 tipc_nl_node_reset_link_stats+0x3ea/0xb50 net/tipc/node.c:2595 genl_family_rcv_msg_doit net/netlink/genetlink.c:971 [inline] genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline] genl_rcv_msg+0x11ec/0x1290 net/netlink/genetlink.c:1066 netlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2545 genl_rcv+0x40/0x60 net/netlink/genetlink.c:1075 netlink_unicast_kernel net/netlink/af_netlink.c:1342 [inline] netlink_unicast+0xf47/0x1250 net/netlink/af_netlink.c:1368 netlink_sendmsg+0x1238/0x13d0 net/netlink/af_netlink.c:1910 sock_sendmsg_nosec net/socket.c:730 [inline] sock_sendmsg net/socket.c:753 [inline] ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2541 ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2595 __sys_sendmsg net/socket.c:2624 [inline] __do_sys_sendmsg net/socket.c:2633 [inline] __se_sys_sendmsg net/socket.c:2631 [inline] __x64_sys_sendmsg+0x307/0x490 net/socket.c:2631 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd Uninit was created at: slab_post_alloc_hook+0x12f/0xb70 mm/slab.h:767 slab_alloc_node mm/slub.c:3478 [inline] kmem_cache_alloc_node+0x577/0xa80 mm/slub.c:3523 kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:559 __alloc_skb+0x318/0x740 net/core/skbuff.c:650 alloc_skb include/linux/skbuff.h:1286 [inline] netlink_alloc_large_skb net/netlink/af_netlink.c:1214 [inline] netlink_sendmsg+0xb34/0x13d0 net/netlink/af_netlink.c:1885 sock_sendmsg_nosec net/socket.c:730 [inline] sock_sendmsg net/socket.c:753 [inline] ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2541 ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2595 __sys_sendmsg net/socket.c:2624 [inline] __do_sys_sendmsg net/socket.c:2633 [inline] __se_sys_sendmsg net/socket.c:2631 [inline] __x64_sys_sendmsg+0x307/0x490 net/socket.c:2631 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd TIPC bearer-related names including link names must be null-terminated strings. If a link name which is not null-terminated is passed through netlink, strstr() and similar functions can cause buffer overrun. This causes the above issue. This patch changes the nla_policy for bearer-related names from NLA_STRING to NLA_NUL_STRING. This resolves the issue by ensuring that only null-terminated strings are accepted as bearer-related names. syzbot reported similar uninit-value issue related to bearer names [2]. The root cause of this issue is that a non-null-terminated bearer name was passed. This patch also resolved this issue.

How to fix

Remediation Available
linuxDebian
Fixed in:5.10.205-1CVE-2023-52845
Fixed in:6.1.64-1CVE-2023-52845
Fixed in:6.6.8-1CVE-2023-52845
Fixed in:6.6.8-1CVE-2023-52845
bpftoolRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
bpftoolRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
bpftool-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
bpftool-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernelRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernelRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-abi-stablelistsRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-abi-stablelistsRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-coreRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-coreRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debugRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debugRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-coreRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-coreRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-develRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-develRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-modulesRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-modulesRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-modules-extraRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debug-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-aarch64Red Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-aarch64Rocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-ppc64leRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-ppc64leRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-s390xRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-s390xRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-x86_64Red Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-debuginfo-common-x86_64Rocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-develRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-develRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-docRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-docRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-modulesRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-modulesRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-modules-extraRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-rtRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rtRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-coreRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-coreRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debugRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debugRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-coreRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-coreRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-develRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-develRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-kvmRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-kvmRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-modulesRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-modulesRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-modules-extraRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debug-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debuginfo-common-x86_64Rocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-debuginfo-common-x86_64Red Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-develRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-develRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-kvmRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-kvmRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-modulesRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-modulesRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-modules-extraRocky
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-rt-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.rt7.357.el8_10RHSA-2024:5102
kernel-toolsRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-toolsRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-tools-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-tools-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-tools-libsRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-tools-libsRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-tools-libs-develRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-tools-libs-develRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdumpRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdumpRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-coreRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-coreRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-develRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-develRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-modulesRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-modulesRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
kernel-zfcpdump-modules-extraRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
perfRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
perfRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
perf-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
perf-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
python3-perfRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
python3-perfRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
python3-perf-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
python3-perf-debuginfoRocky
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101
Fixed in:0:4.18.0-553.16.1.el8_10RHSA-2024:5101

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploit Intelligence

0.26%probability of exploitation in 30 days
17thpercentile

Low risk: more likely to be exploited than 17% of all known CVEs.

References

Related Vulnerabilities

Other CWE-908 vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2025-5777High7.5100%KEV + RansomFix
CVE-2023-24941Critical9.895%-Fix
CVE-2007-1751High9.361%--
CVE-2008-0081Critical9.858%--
CVE-2020-1934Medium5.352%-Fix
CVE-2011-1255High9.342%--
Embed a live status badge for CVE-2023-52845
CVE-2023-52845 severity badge

Markdown

[![CVE-2023-52845](https://tridentstack.com/cve/badge/CVE-2023-52845.svg)](https://tridentstack.com/cve/CVE-2023-52845)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-52845"><img src="https://tridentstack.com/cve/badge/CVE-2023-52845.svg" alt="CVE-2023-52845"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-01-31.