CVE-2023-21400

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-21400

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-21400.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-21400

Aliases

A-264663832
PUB-A-264663832

Downstream

DEBIAN-CVE-2023-21400

DLA-3623-1

DSA-5480-1

OESA-2023-1666

OESA-2023-1667

OESA-2023-1668

OESA-2023-1669

OESA-2023-1670

SUSE-SU-2023:3302-1

SUSE-SU-2023:3311-1

SUSE-SU-2023:3313-1

SUSE-SU-2023:3318-1

SUSE-SU-2023:3376-1

SUSE-SU-2023:3377-1

SUSE-SU-2023:3684-1

SUSE-SU-2023:3687-1

SUSE-SU-2023:3785-1

UBUNTU-CVE-2023-21400

LSN-0098-1

USN-6315-1

USN-6325-1

USN-6330-1

USN-6332-1

USN-6348-1

USN-7234-1

USN-7234-2

USN-7234-3

USN-7234-4

USN-7234-5

USN-7295-1

USN-7413-1

Related

Published

2023-07-13T00:15:24.340Z

Modified

2026-03-13T06:56:38.651832Z

Severity

6.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Git /

Affected ranges

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "10.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "11.0"
            }
        ]
    }
]

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-21400.json"