2169719 – (CVE-2023-1249) CVE-2023-1249 kernel: missing mmap_lock in file_files_note that could possibly lead to a use after free in the coredump code

Bug 2169719 (CVE-2023-1249) - CVE-2023-1249 kernel: missing mmap_lock in file_files_note that could possibly lead to a use after free in the coredump code

Summary: CVE-2023-1249 kernel: missing mmap_lock in file_files_note that could possibl...

Keywords:
Status:	NEW
Alias:	CVE-2023-1249
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Nobody
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2169741 2179160
Blocks:	2156315
TreeView+	depends on / blocked

Reported:	2023-02-14 13:37 UTC by Alex
Modified:	2023-07-07 08:35 UTC (History)
CC List:	33 users (show)
Fixed In Version:	Linux kernel 5.18-rc1
Doc Type:	If docs needed, set a value
Doc Text:	A use-after-free flaw was found in the Linux kernel’s core dump subsystem. This flaw allows a local user to crash the system. Only if patch 390031c94211 ("coredump: Use the vma snapshot in fill_files_note") not applied yet, then kernel could be affected.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Alex 2023-02-14 13:37:24 UTC

A flaw in the Linux Kernel found. When performing core dump, the use after free could happen in file_files_note function.

Reference:
https://patchwork.kernel.org/project/linux-fsdevel/patch/87iltzn3nd.fsf_-_@email.froward.int.ebiederm.org/

Note You need to log in before you can comment on or make changes to this bug.

acaringi
allarkin
bhu
chwhite
ddepaula
debarbos
dvlasenk
ezulian
fhrbata
hkrzesin
jarod
jfaracco
jferlan
jforbes
jlelli
joe.lawrence
jshortt
jstancek
jwyatt
kcarcia
kernel-mgr
lgoncalv
lleshchi
lzampier
nmurray
ptalbert
qzhao
rvrbovsk
scweaver
swood
tyberry
walters
williams