OESA-2023-1845

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1845
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2023-1845.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2023-1845
Upstream
  • CVE-2023-3327
Published
2023-11-17T11:06:20Z
Modified
2025-08-12T05:16:00.895785Z
Summary
kernel security update
Details

The Linux Kernel, the operating system core itself.

Security Fix(es):

An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvbregisterdevice dynamically allocating fops.(CVE-2022-45884)

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-35823. Reason: This candidate is a reservation duplicate of CVE-2023-35823. Notes: All CVE users should reference CVE-2023-35823 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.(CVE-2023-3327)

A race condition was found in the QXL driver in the Linux kernel. The qxlmodedumbcreate() function dereferences the qobj returned by the qxlgemobjectcreatewithhandle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.(CVE-2023-39198)

A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation.

If a class with a link-sharing curve (i.e. with the HFSCFSC flag set) has a parent without a link-sharing curve, then initvf() will call vttreeinsert() on the parent, but vttreeremove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free.

We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.

(CVE-2023-4623)

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

Addition and removal of rules from chain bindings within the same transaction causes leads to use-after-free.

We recommend upgrading past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325.

(CVE-2023-5197)

Database specific 
{
    "severity": "High"
}
References

Affected packages

openEuler:22.03-LTS-SP2 / kernel

Package

Name
kernel
Purl
pkg:rpm/openEuler/kernel&distro=openEuler-22.03-LTS-SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.10.0-153.33.0.110.oe2203sp2

Ecosystem specific 

{
    "x86_64": [
        "bpftool-debuginfo-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-debugsource-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-headers-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "perf-debuginfo-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-tools-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "bpftool-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-debuginfo-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-tools-devel-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "python3-perf-debuginfo-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-devel-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-tools-debuginfo-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-source-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "python3-perf-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "kernel-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm",
        "perf-5.10.0-153.33.0.110.oe2203sp2.x86_64.rpm"
    ],
    "src": [
        "kernel-5.10.0-153.33.0.110.oe2203sp2.src.rpm"
    ],
    "aarch64": [
        "bpftool-debuginfo-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "perf-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "bpftool-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "python3-perf-debuginfo-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-devel-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "python3-perf-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-tools-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-debuginfo-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-tools-debuginfo-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-source-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-tools-devel-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-debugsource-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "kernel-headers-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm",
        "perf-debuginfo-5.10.0-153.33.0.110.oe2203sp2.aarch64.rpm"
    ]
}