In the Linux kernel, the following vulnerability has been resolved:
media: pvrusb2: fix use after free on context disconnection
Upon module load, a kthread is created targeting the
pvr2_context_thread_func function, which may call pvr2_context_destroy
and thus call kfree() on the context object. However, that might happen
before the usb hub_event handler is able to notify the driver. This
patch adds a sanity check before the invalid read reported by syzbot,
within the context disconnection call stack.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-02-22T16:21:37.784Z
Updated: 2024-09-11T17:33:51.682Z
Reserved: 2024-02-20T12:30:33.291Z
Link: CVE-2023-52445
Vulnrichment
Updated: 2024-09-11T12:42:19.259Z
NVD
Status : Modified
Published: 2024-02-22T17:15:08.477
Modified: 2024-06-27T12:15:14.443
Link: CVE-2023-52445
Redhat