目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

CVE-2023-52562— Linux kernel 安全漏洞

AI 预测 5.5 利用难度: 中等 EPSS 0.22% · P13

影响版本矩阵 10

厂商产品版本范围状态
LinuxLinux0495e337b7039191dfce6e03f5f830454b1fae6b< a5569bb187521432f509b69dda7d29f78b2d38b0affected
0495e337b7039191dfce6e03f5f830454b1fae6b< 51988be187b041e5355245957b0b9751fa382e0daffected
0495e337b7039191dfce6e03f5f830454b1fae6b< 46a9ea6681907a3be6b6b0d43776dccc62cad6cfaffected
357321557920c805de2b14832002465c320eea4faffected
5.19.8< 5.20affected
6.0affected
< 6.0unaffected
6.1.56≤ 6.1.*unaffected
… +2 条更多
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2023-52562 基础信息

漏洞信息

对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy()
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy() After the commit in Fixes:, if a module that created a slab cache does not release all of its allocated objects before destroying the cache (at rmmod time), we might end up releasing the kmem_cache object without removing it from the slab_caches list thus corrupting the list as kmem_cache_destroy() ignores the return value from shutdown_cache(), which in turn never removes the kmem_cache object from slabs_list in case __kmem_cache_shutdown() fails to release all of the cache's slabs. This is easily observable on a kernel built with CONFIG_DEBUG_LIST=y as after that ill release the system will immediately trip on list_add, or list_del, assertions similar to the one shown below as soon as another kmem_cache gets created, or destroyed: [ 1041.213632] list_del corruption. next->prev should be ffff89f596fb5768, but was 52f1e5016aeee75d. (next=ffff89f595a1b268) [ 1041.219165] ------------[ cut here ]------------ [ 1041.221517] kernel BUG at lib/list_debug.c:62! [ 1041.223452] invalid opcode: 0000 [#1] PREEMPT SMP PTI [ 1041.225408] CPU: 2 PID: 1852 Comm: rmmod Kdump: loaded Tainted: G B W OE 6.5.0 #15 [ 1041.228244] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS edk2-20230524-3.fc37 05/24/2023 [ 1041.231212] RIP: 0010:__list_del_entry_valid+0xae/0xb0 Another quick way to trigger this issue, in a kernel with CONFIG_SLUB=y, is to set slub_debug to poison the released objects and then just run cat /proc/slabinfo after removing the module that leaks slab objects, in which case the kernel will panic: [ 50.954843] general protection fault, probably for non-canonical address 0xa56b6b6b6b6b6b8b: 0000 [#1] PREEMPT SMP PTI [ 50.961545] CPU: 2 PID: 1495 Comm: cat Kdump: loaded Tainted: G B W OE 6.5.0 #15 [ 50.966808] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS edk2-20230524-3.fc37 05/24/2023 [ 50.972663] RIP: 0010:get_slabinfo+0x42/0xf0 This patch fixes this issue by properly checking shutdown_cache()'s return value before taking the kmem_cache_release() branch.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Linux kernel 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于kmem_cache_destroy()的slab_caches列表损坏。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
LinuxLinux 0495e337b7039191dfce6e03f5f830454b1fae6b ~ a5569bb187521432f509b69dda7d29f78b2d38b0 -
LinuxLinux 6.0 -

二、漏洞 CVE-2023-52562 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2023-52562 的情报信息

登录查看更多情报信息。

CVE-2023-52562 其他参考 (3)

同批安全公告 · Linux · 2024-03-02 · 共 57 条

CVE-2023-52563Linux kernel 安全漏洞
CVE-2023-52581Linux kernel 安全漏洞
CVE-2023-52574Linux kernel 安全漏洞
CVE-2023-52578Linux kernel 安全漏洞
CVE-2023-52577Linux kernel 安全漏洞
CVE-2023-52576Linux kernel 安全漏洞
CVE-2023-52580Linux kernel 安全漏洞
CVE-2023-52566Linux kernel 安全漏洞
CVE-2023-52565Linux kernel 安全漏洞
CVE-2023-52564Linux kernel 安全漏洞
CVE-2023-52567Linux kernel 安全漏洞
CVE-2023-52561Linux kernel 安全漏洞
CVE-2023-52560Linux kernel 安全漏洞
CVE-2023-52559Linux kernel 安全漏洞
CVE-2023-52518Linux kernel 安全漏洞
CVE-2023-52532Linux kernel 安全漏洞
CVE-2023-52531Linux kernel 安全漏洞
CVE-2023-52530Linux kernel 安全漏洞
CVE-2023-52529Linux kernel 安全漏洞
CVE-2023-52528Linux kernel 安全漏洞

显示前 20 条,共 57 条。 查看全部 &rarr; →

IV. Related Vulnerabilities

V. Comments for CVE-2023-52562

暂无评论


发表评论