Description

In the Linux kernel, the following vulnerability has been resolved: net: atlantic: eliminate double free in error handling logic Driver has a logic leak in ring data allocation/free, where aq_ring_free could be called multiple times on same ring, if system is under stress and got memory allocation error. Ring pointer was used as an indicator of failure, but this is not correct since only ring data is allocated/deallocated. Ring itself is an array member. Changing ring allocation functions to return error code directly. This simplifies error handling and eliminates aq_ring_free on higher layer.

INFO

Published Date :

2024-05-17T13:45:05.545Z

Last Modified :

2025-05-20T14:27:31.461Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52664 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52664.

URL Resource
https://git.kernel.org/stable/c/0edb3ae8bfa31cd544b0c195bdec00e036002b5d cve-icon cve-icon
https://git.kernel.org/stable/c/b3cb7a830a24527877b0bc900b9bd74a96aea928 cve-icon cve-icon
https://git.kernel.org/stable/c/c11a870a73a3bc4cc7df6dd877a45b181795fcbf cve-icon cve-icon
https://git.kernel.org/stable/c/d1fde4a7e1dcc4d49cce285107a7a43c3030878d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024051756-CVE-2023-52664-dea1@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52664 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52664 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact