NVD Vulnerability Detail

CVE-2023-1476

Summary	A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs due to a race condition between rmap walk and mremap, allowing a local user to crash the system or potentially escalate their privileges on the system.
Publication Date	Nov. 3, 2023, 6:15 p.m.
Registration Date	Nov. 3, 2023, 8 p.m.
Last Update	Nov. 21, 2024, 4:39 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel::::::::					5.14

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:8.8:::::::*
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:::::::*
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.8_ppc64le:::::::*

Related information, measures and tools

No	URL	タグ
1	https://access.redhat.com/errata/RHSA-2023:1659	Third Party Advisory
2	https://access.redhat.com/errata/RHSA-2023:1659	Third Party Advisory
3	https://access.redhat.com/security/cve/CVE-2023-1476	Third Party Advisory
4	https://access.redhat.com/security/cve/CVE-2023-1476	Third Party Advisory
5	https://bugzilla.redhat.com/show_bug.cgi?id=2176035	Issue Tracking
6	https://bugzilla.redhat.com/show_bug.cgi?id=2176035	Issue Tracking
7	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=97113eb39fa7972722ff490b947d8af023e1f6a2	Mailing List Patch
8	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=97113eb39fa7972722ff490b947d8af023e1f6a2	Mailing List Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-416	解放済みメモリの使用	https://cwe.mitre.org/data/definitions/416.html

JVN Vulnerability Information

Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性

Title	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性
Summary	Linux の Linux Kernel 等複数ベンダの製品には、解放済みメモリの使用に関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 7, 2023, midnight
Registration Date	Jan. 5, 2024, 4:03 p.m.
Last Update	Jan. 5, 2024, 4:03 p.m.

Affected System

レッドハット

Red Hat Enterprise Linux 8.0

Red Hat Enterprise Linux EUS 8.8

Red Hat Enterprise Linux for Power, little endian 8.0 ppc64le

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le

Red Hat Enterprise Linux Server TUS 8.8

Linux

Linux Kernel 5.14 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2023-1476	https://www.cve.org/CVERecord?id=CVE-2023-1476
National Vulnerability Database (NVD)
2	CVE-2023-1476	https://nvd.nist.gov/vuln/detail/CVE-2023-1476
Red Hat Customer Portal
3	CVE-2023-1476	https://access.redhat.com/security/cve/CVE-2023-1476

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-416	https://cwe.mitre.org/data/definitions/416.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	mm/mremap: hold the rmap lock in write mode when moving page table entries.	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=97113eb39fa7972722ff490b947d8af023e1f6a2
Linux Kernel
2	Linux Kernel Archives	https://www.kernel.org
Red Hat Bugzilla
3	Bug 2176035	https://bugzilla.redhat.com/show_bug.cgi?id=2176035
Red Hat Security Advisory
4	RHSA-2023:1659	https://access.redhat.com/errata/RHSA-2023:1659

Change Log

No	Changed Details	Date of change
1	[2024年01月05日] 掲載	Jan. 5, 2024, 4:03 p.m.