We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Assigner | redhat |
Reserved | 2023-12-06 |
Published | 2023-12-21 |
Updated | 2024-09-13 |
A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOC_SETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free problem on a struct gsm_dlci while restarting the gsm mux. This could allow a local unprivileged user to escalate their privileges on the system.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
2023-12-18: | Reported to Red Hat. |
2023-12-21: | Made public. |
https://access.redhat.com/errata/RHSA-2024:0930 (RHSA-2024:0930)
https://access.redhat.com/errata/RHSA-2024:0937 (RHSA-2024:0937)
https://access.redhat.com/errata/RHSA-2024:1018 (RHSA-2024:1018)
https://access.redhat.com/errata/RHSA-2024:1019 (RHSA-2024:1019)
https://access.redhat.com/errata/RHSA-2024:1055 (RHSA-2024:1055)
https://access.redhat.com/errata/RHSA-2024:1250 (RHSA-2024:1250)
https://access.redhat.com/errata/RHSA-2024:1253 (RHSA-2024:1253)
https://access.redhat.com/errata/RHSA-2024:1306 (RHSA-2024:1306)
https://access.redhat.com/errata/RHSA-2024:1607 (RHSA-2024:1607)
https://access.redhat.com/errata/RHSA-2024:1612 (RHSA-2024:1612)
https://access.redhat.com/errata/RHSA-2024:1614 (RHSA-2024:1614)
https://access.redhat.com/errata/RHSA-2024:2093 (RHSA-2024:2093)
https://access.redhat.com/errata/RHSA-2024:2394 (RHSA-2024:2394)
https://access.redhat.com/errata/RHSA-2024:2621 (RHSA-2024:2621)
https://access.redhat.com/errata/RHSA-2024:2697 (RHSA-2024:2697)
https://access.redhat.com/errata/RHSA-2024:4577 (RHSA-2024:4577)
https://access.redhat.com/errata/RHSA-2024:4729 (RHSA-2024:4729)
https://access.redhat.com/errata/RHSA-2024:4731 (RHSA-2024:4731)
https://access.redhat.com/errata/RHSA-2024:4970 (RHSA-2024:4970)
https://access.redhat.com/security/cve/CVE-2023-6546
https://bugzilla.redhat.com/show_bug.cgi?id=2255498 (RHBZ#2255498)
https://github.com/torvalds/linux/commit/3c4f8333b582487a2d1e02171f1465531cde53e3
https://www.zerodayinitiative.com/advisories/ZDI-CAN-20527