Bug 2231410 (CVE-2023-25775) - CVE-2023-25775 kernel: irdma: Improper access control
Summary: CVE-2023-25775 kernel: irdma: Improper access control
Keywords:
Status: NEW
Alias: CVE-2023-25775
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2231413 2231414 2231416 2233039 2233040 2233041 2233042
Blocks: 2231417
TreeView+ depends on / blocked
 
Reported: 2023-08-11 14:14 UTC by Pedro Sampaio
Modified: 2024-05-22 09:52 UTC (History)
46 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
An improper access control flaw was found in the Intel(R) Ethernet Controller RDMA driver in the Linux Kernel. This flaw allows an unauthenticated user to enable privilege escalation via network access.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2024:2615 0 None None None 2024-04-30 16:24:06 UTC
Red Hat Product Errata RHBA-2024:2634 0 None None None 2024-05-01 01:22:02 UTC
Red Hat Product Errata RHBA-2024:2650 0 None None None 2024-05-02 00:14:49 UTC
Red Hat Product Errata RHBA-2024:2686 0 None None None 2024-05-02 22:49:57 UTC
Red Hat Product Errata RHSA-2024:2003 0 None None None 2024-04-23 15:43:03 UTC
Red Hat Product Errata RHSA-2024:2004 0 None None None 2024-04-23 16:38:57 UTC
Red Hat Product Errata RHSA-2024:2394 0 None None None 2024-04-30 10:12:36 UTC
Red Hat Product Errata RHSA-2024:2950 0 None None None 2024-05-22 09:14:36 UTC
Red Hat Product Errata RHSA-2024:3138 0 None None None 2024-05-22 09:52:00 UTC

Description Pedro Sampaio 2023-08-11 14:14:12 UTC 
Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

References:

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00794.html
Comment 2 Pedro Sampaio 2023-08-11 14:16:04 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2231416]
Comment 7 Justin M. Forbes 2023-09-25 16:36:43 UTC 
This was fixed for Fedora with the 6.4.16 stable kernel updates.
Comment 8 errata-xmlrpc 2024-04-23 15:42:59 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2024:2003 https://access.redhat.com/errata/RHSA-2024:2003
Comment 9 errata-xmlrpc 2024-04-23 16:38:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2024:2004 https://access.redhat.com/errata/RHSA-2024:2004
Comment 10 errata-xmlrpc 2024-04-30 10:12:32 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:2394 https://access.redhat.com/errata/RHSA-2024:2394
Comment 11 errata-xmlrpc 2024-05-22 09:14:31 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:2950 https://access.redhat.com/errata/RHSA-2024:2950
Comment 12 errata-xmlrpc 2024-05-22 09:51:55 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:3138 https://access.redhat.com/errata/RHSA-2024:3138
Note You need to log in before you can comment on or make changes to this bug.