In the Linux kernel, the following vulnerability has been resolved:
iommufd: Fix missing update of domains_itree after splitting iopt_area
In iopt_area_split(), if the original iopt_area has filled a domain and is
linked to domains_itree, pages_nodes have to be properly
reinserted. Otherwise the domains_itree becomes corrupted and we will UAF.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Sep 2024 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat enterprise Linux |
|
CPEs | cpe:/a:redhat:enterprise_linux:9 cpe:/o:redhat:enterprise_linux:9 |
|
Vendors & Products |
Redhat
Redhat enterprise Linux |
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-05-21T15:31:13.700Z
Updated: 2024-08-02T23:11:35.602Z
Reserved: 2024-05-21T15:19:24.247Z
Link: CVE-2023-52801
Vulnrichment
Updated: 2024-08-02T23:11:35.602Z
NVD
Status : Awaiting Analysis
Published: 2024-05-21T16:15:18.603
Modified: 2024-07-03T01:43:59.217
Link: CVE-2023-52801
Redhat