CVE-2023-52667

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-52667
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52667.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-52667
Downstream
Related
Published
2024-05-17T14:01:48.454Z
Modified
2026-04-11T12:46:34.151884Z
Summary
net/mlx5e: fix a potential double-free in fs_any_create_groups
Details

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5e: fix a potential double-free in fsanycreate_groups

When kcalloc() for ft->g succeeds but kvzalloc() for in fails, fsanycreategroups() will free ft->g. However, its caller fsanycreatetable() will free ft->g again through calling mlx5edestroyflowtable(), which will lead to a double-free. Fix this by setting ft->g to NULL in fsanycreategroups().

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52667.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0f575c20bf0686caf3d82d6c626c2e1e4a4c36e6
Fixed
72a729868592752b5a294d27453da264106983b1
Fixed
b2fa86b2aceb4bc9ada51cea90f61546d7512cbe
Fixed
2897c981ee63e1be5e530b1042484626a10b26d8
Fixed
65a4ade8a6d205979292e88beeb6a626ddbd4779
Fixed
aef855df7e1bbd5aa4484851561211500b22707e

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52667.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.13.0
Fixed
5.15.149
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.76
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.15
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.3

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52667.json"