CVE-2023-2176

Updated: 2024-01-25 15:47:13.526006

Description:

A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH In Testing 2024-02-28 08:40:15
AlmaLinux 9.2 FIPS kernel 5.14.0 7.8 HIGH In Testing 2024-02-28 08:40:16
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-02-14 10:08:49
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Needs Triage 2024-01-25 15:47:21
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2024:1707478061 2024-02-09 08:26:28
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2024:1707478721 2024-02-09 08:26:30
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Needs Triage 2024-01-25 15:47:16
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-02-14 10:08:49