CVE-2019-19318

Description

In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags returns an already freed pointer,

Risk Information

Base Score

4.4

MODERATE

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

0.353

Associated Vulnerability

Vulnerability	OS Platform
Linux kernel (USN-4414-1) linux-image-gcp_4.15.0.1078.80_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-gke_4.15.0.1064.66_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-gke_4.15.0.1078.80_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-kvm_4.15.0.1069.65_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-oem_4.15.0.107.112_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-oem_4.15.0.1091.94_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-oracle_4.15.0.1046.39_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-aws-hwe_4.15.0.1074.74_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-generic_4.15.0.109.97_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-generic_4.15.0.109.97_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-virtual_4.15.0.109.97_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-virtual_4.15.0.109.97_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-gke-4.15_4.15.0.1064.66_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-lowlatency_4.15.0.109.97_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-lowlatency_4.15.0.109.97_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-aws-lts-18.04_4.15.0.1077.79_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-gcp-lts-18.04_4.15.0.1078.94_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1064-gke_4.15.0-1064.67_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1069-kvm_4.15.0-1069.70_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1074-aws_4.15.0-1074.78~16.04.1_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1077-aws_4.15.0-1077.81_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1078-gcp_4.15.0-1078.88_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1078-gcp_4.15.0-1078.88~16.04.1_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1091-oem_4.15.0-1091.101_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-oracle-lts-18.04_4.15.0.1048.57_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-generic-hwe-16.04_4.15.0.107.112_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-generic-hwe-16.04_4.15.0.107.112_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-virtual-hwe-16.04_4.15.0.107.112_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-virtual-hwe-16.04_4.15.0.107.112_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1046-oracle_4.15.0-1046.50~16.04.1_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-1048-oracle_4.15.0-1048.52_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-107-generic_4.15.0-107.108~16.04.1_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-107-generic_4.15.0-107.108~16.04.1_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-109-generic_4.15.0-109.110_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-109-generic_4.15.0-109.110_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-lowlatency-hwe-16.04_4.15.0.107.112_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-lowlatency-hwe-16.04_4.15.0.107.112_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-107-lowlatency_4.15.0-107.108~16.04.1_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-107-lowlatency_4.15.0-107.108~16.04.1_amd64.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-109-lowlatency_4.15.0-109.110_i386.deb	Linux
Linux kernel (USN-4414-1) linux-image-4.15.0-109-lowlatency_4.15.0-109.110_amd64.deb	Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234