7.8
CVE-2023-53084
- EPSS 0.17%
- Veröffentlicht 02.05.2025 15:55:32
- Zuletzt bearbeitet 12.11.2025 21:07:54
- CVE-Watchlists
- Unerledigt
drm/shmem-helper: Remove another errant put in error path
In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Remove another errant put in error path drm_gem_shmem_mmap() doesn't own reference in error code path, resulting in the dma-buf shmem GEM object getting prematurely freed leading to a later use-after-free.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.9.5 < 5.10
Linux ≫ Linux Kernel Version >= 5.10.1 < 5.10.176
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.104
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.21
Linux ≫ Linux Kernel Version >= 6.2 < 6.2.8
Linux ≫ Linux Kernel Version5.10 Update-
Linux ≫ Linux Kernel Version5.10 Updaterc2
Linux ≫ Linux Kernel Version5.10 Updaterc3
Linux ≫ Linux Kernel Version5.10 Updaterc4
Linux ≫ Linux Kernel Version5.10 Updaterc5
Linux ≫ Linux Kernel Version5.10 Updaterc6
Linux ≫ Linux Kernel Version5.10 Updaterc7
Linux ≫ Linux Kernel Version6.3 Updaterc1
Linux ≫ Linux Kernel Version6.3 Updaterc2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.17% | 0.066 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
https://git.kernel.org/stable/c/684c7372bbd6447c2e86a2a84e97a1478604d21f
https://git.kernel.org/stable/c/5cfb617967b05f8f27e862c97db1fabd8485f4db
https://git.kernel.org/stable/c/dede8c14a37a7ac458f9add56154a074ed78e7cf
https://git.kernel.org/stable/c/77d26c824aa5a7e0681ef1d5b75fe538d746addc
https://git.kernel.org/stable/c/ee9adb7a45516cfa536ca92253d7ae59d56db9e4