Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-6546

A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOC_SETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free problem on a struct gsm_dlci while restarting the gsm mux. This could allow a local unprivileged user to escalate their privileges on the system.

Published

2023-12-21T20:15:08.260

Last Modified

2024-11-21T08:44:04.170

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.0 (HIGH)

Weaknesses

Type: Secondary
CWE-416
Type: Primary
CWE-362

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 6.5	Yes
Operating System	linux	linux_kernel	6.5	Yes
Operating System	linux	linux_kernel	6.5	Yes
Operating System	linux	linux_kernel	6.5	Yes
Operating System	linux	linux_kernel	6.5	Yes
Operating System	linux	linux_kernel	6.5	Yes
Operating System	linux	linux_kernel	6.5	Yes
Operating System	fedoraproject	fedora	39	Yes
Operating System	redhat	enterprise_linux	8.0	Yes
Operating System	redhat	enterprise_linux	9.0	Yes

References

https://access.redhat.com/errata/RHSA-2024:0930 ([email protected])
https://access.redhat.com/errata/RHSA-2024:0937 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1018 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1019 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1055 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1250 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1253 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1306 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1607 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1612 ([email protected])
https://access.redhat.com/errata/RHSA-2024:1614 ([email protected])
https://access.redhat.com/errata/RHSA-2024:2093 ([email protected])
https://access.redhat.com/errata/RHSA-2024:2394 ([email protected])
https://access.redhat.com/errata/RHSA-2024:2621 ([email protected])
https://access.redhat.com/errata/RHSA-2024:2697 ([email protected])
https://access.redhat.com/errata/RHSA-2024:4577 ([email protected])
https://access.redhat.com/errata/RHSA-2024:4729 ([email protected])
https://access.redhat.com/errata/RHSA-2024:4731 ([email protected])
https://access.redhat.com/errata/RHSA-2024:4970 ([email protected])
https://access.redhat.com/security/cve/CVE-2023-6546 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=2255498 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/torvalds/linux/commit/3c4f8333b582487a2d1e02171f1465531cde53e3 Patch ([email protected])
https://www.zerodayinitiative.com/advisories/ZDI-CAN-20527 ([email protected])
http://www.openwall.com/lists/oss-security/2024/04/10/18 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/10/21 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/11/7 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/11/9 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/12/1 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/12/2 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/16/2 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/17/1 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:0930 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:0937 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1018 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1019 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1055 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1250 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1253 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1306 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1607 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1612 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:1614 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:2093 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:2394 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:2621 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:2697 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:4577 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:4729 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2024:4731 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/security/cve/CVE-2023-6546 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=2255498 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/torvalds/linux/commit/3c4f8333b582487a2d1e02171f1465531cde53e3 Patch (af854a3a-2127-422b-91ae-364da2661108)
https://www.zerodayinitiative.com/advisories/ZDI-CAN-20527 (af854a3a-2127-422b-91ae-364da2661108)