CVE-2023-52983

HIGH7.8

block, bfq: fix uaf for bfqq in bic_set_bfqq()

Published Mar 27, 2025

Modified 10 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

block, bfq: fix uaf for bfqq in bic_set_bfqq()

After commit 64dc8c732f5c ("block, bfq: fix possible uaf for 'bfqq->bic'"), bic->bfqq will be accessed in bic_set_bfqq(), however, in some context bic->bfqq will be freed, and bic_set_bfqq() is called with the freed bic->bfqq.

Fix the problem by always freeing bfqq after bic_set_bfqq().

References

WEB

https://git.kernel.org/stable/c/511c922c5bf6c8a166bea826e702336bc2424140

WEB

https://git.kernel.org/stable/c/7f77f3dab5066a7c9da73d72d1eee895ff84a8d5

WEB

https://git.kernel.org/stable/c/b600de2d7d3a16f9007fad1bdae82a3951a26af2

WEB

https://git.kernel.org/stable/c/cb1876fc33af26d00efdd473311f1b664c77c44e

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2023-52983

CVSS Analysis

CVSS v3.1

7.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

7.8/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Ecosystems

Timeline

PublishedMar 27, 2025

ModifiedMay 4, 2025

CVE-2023-52983 | Mondoo Vulnerability Intelligence