CVE-2023-0458

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-0458

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-0458.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-0458

Downstream

DEBIAN-CVE-2023-0458

DLA-3403-1

DLA-3404-1

OESA-2023-1274

OESA-2023-1275

OESA-2023-1284

RHSA-2023:4377

RHSA-2023:4378

RHSA-2023:4801

RHSA-2023:4814

RHSA-2023:6901

RHSA-2023:7077

RHSA-2024:0575

RHSA-2024:0724

UBUNTU-CVE-2023-0458

USN-6079-1

USN-6093-1

USN-6096-1

USN-6134-1

USN-6222-1

USN-6254-1

USN-6256-1

USN-6341-1

USN-6385-1

Related

Published

2023-04-26T19:15:08Z

Modified

2025-08-09T20:01:26Z

Severity

4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

A speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or commit 739790605705ddcf18f21782b9c99ad7d53a8c11

References

Affected packages