Updated: 2023-09-10
CWE: CWE-843
Description:
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused sched_rt_entity,causing memory corruption.
CVSS3: 7
| OS | Vendor version | Errata |
|---|---|---|
| Ubuntu 20.04 AWS | 5.4.0-1104.112 | USN-6185-1 |
| Ubuntu 20.04 GCP | 5.4.0-1107.116 | USN-6185-1 |
| Ubuntu 20.04 Azure | 5.4.0-1110.116 | USN-6185-1 |
| Ubuntu 22.04 | 5.15.0-75.82 | USN-6172-1 |
| Ubuntu 20.04 | 5.4.0-152.169 | USN-6172-1 |
| Ubuntu 20.04 HWE Azure | 5.15.0-1040.47~20.04.1 | USN-6172-1 |
| Ubuntu 22.04 Azure | 5.15.0-1040.47 | USN-6172-1 |
| Ubuntu 20.04 HWE AWS | 5.15.0-1038.43~20.04.1 | USN-6172-1 |
| Ubuntu 22.04 AWS | 5.15.0-1038.43 | USN-6172-1 |
| Amazon Linux 2 5.4 | 5.4.235-144.344.amzn2 | ALASKERNEL-5.4-2023-043 |
| Amazon Linux 2 5.10 | 5.10.173-154.642.amzn2 | ALASKERNEL-5.10-2023-028 |
| OS | Original kernel version | State |
|---|---|---|
| Ubuntu 20.04 AWS | |
Ready For Release |
| Ubuntu 20.04 GCP | |
Ready For Release |
| Ubuntu 20.04 Azure | |
Ready For Release |
| Ubuntu 22.04 |
5.15.0-25.25
show all
hide all
5.15.0-27.28
5.15.0-28.29
5.15.0-29.30
5.15.0-30.31
5.15.0-33.34
5.15.0-35.36
5.15.0-37.39
5.15.0-39.42
5.15.0-40.43
5.15.0-41.44
5.15.0-43.46
5.15.0-46.49
5.15.0-47.51
5.15.0-48.54
5.15.0-50.56
5.15.0-52.58
5.15.0-53.59
5.15.0-54.60
5.15.0-56.62
5.15.0-57.63
5.15.0-58.64
5.15.0-60.66
5.15.0-67.74
5.15.0-68.75
5.15.0-69.76
5.15.0-70.77
5.15.0-71.78
5.15.0-72.79
5.15.0-73.80
|
Released |
| Debian 11 | |
Planned |
| Ubuntu 20.04 | |
Ready For Release |
| Ubuntu 20.04 HWE Azure |
5.15.0-1008.9~20.04.1
show all
hide all
5.15.0-1013.16~20.04.1
5.15.0-1014.17~20.04.1
5.15.0-1017.20~20.04.1
5.15.0-1019.24~20.04.1
5.15.0-1020.25~20.04.1
5.15.0-1021.26~20.04.1
5.15.0-1022.27~20.04.1
5.15.0-1023.29~20.04.1
5.15.0-1024.30~20.04.1
5.15.0-1029.36~20.04.1
5.15.0-1034.41~20.04.1
|
Released |
| Ubuntu 22.04 Azure |
5.15.0-1003.4
show all
hide all
5.15.0-1005.6
5.15.0-1007.8
5.15.0-1008.9
5.15.0-1010.12
5.15.0-1012.15
5.15.0-1013.16
5.15.0-1014.17
5.15.0-1017.20
5.15.0-1019.24
5.15.0-1020.25
5.15.0-1021.26
5.15.0-1022.27
5.15.0-1023.29
5.15.0-1024.30
5.15.0-1029.36
5.15.0-1034.41
5.15.0-1035.42
5.15.0-1036.43
5.15.0-1037.44
5.15.0-1038.45
5.15.0-1039.46
|
Released |
| Ubuntu 20.04 HWE AWS |
5.15.0-1035.39~20.04.1
show all
hide all
5.15.0-1014.18~20.04.1
5.15.0-1015.19~20.04.1
5.15.0-1017.21~20.04.1
5.15.0-1018.22~20.04.1
5.15.0-1020.24~20.04.1
5.15.0-1021.25~20.04.1
5.15.0-1022.26~20.04.1
5.15.0-1023.27~20.04.1
5.15.0-1026.30~20.04.2
5.15.0-1027.31~20.04.1
5.15.0-1028.32~20.04.1
5.15.0-1031.35~20.04.1
5.15.0-1036.40~20.04.1
5.15.0-1037.41~20.04.1
5.15.0-1033.37~20.04.1
5.15.0-1030.34~20.04.1
5.15.0-1034.38~20.04.1
5.15.0-1019.23~20.04.1
|
Released |
| Ubuntu 22.04 AWS |
5.15.0-1004.6
show all
hide all
5.15.0-1005.7
5.15.0-1008.10
5.15.0-1009.11
5.15.0-1011.14
5.15.0-1013.17
5.15.0-1014.18
5.15.0-1015.19
5.15.0-1017.21
5.15.0-1018.22
5.15.0-1020.24
5.15.0-1021.25
5.15.0-1022.26
5.15.0-1023.27
5.15.0-1024.29
5.15.0-1026.30
5.15.0-1027.31
5.15.0-1028.32
5.15.0-1030.34
5.15.0-1031.35
5.15.0-1032.36
5.15.0-1033.37
5.15.0-1034.38
5.15.0-1035.39
5.15.0-1036.40
5.15.0-1037.41
|
Released |
| Amazon Linux 2 5.4 | |
Planned |
| Amazon Linux 2 5.10 |
5.10.112-108.499.amzn2
show all
hide all
5.10.75-79.358.amzn2
5.10.82-83.359.amzn2
5.10.96-90.460.amzn2
5.10.118-111.515.amzn2
5.10.126-117.518.amzn2
5.10.130-118.517.amzn2
5.10.135-122.509.amzn2
5.10.144-127.601.amzn2
5.10.147-133.644.amzn2
5.10.149-133.644.amzn2
5.10.155-138.670.amzn2
5.10.157-139.675.amzn2
5.10.162-141.675.amzn2
5.10.165-143.735.amzn2
5.10.167-147.601.amzn2
|
Released |