Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a potential double-free in fs_any_create_groups When kcalloc() for ft->g succeeds but kvzalloc() for in fails, fs_any_create_groups() will free ft->g. However, its caller fs_any_create_table() will free ft->g again through calling mlx5e_destroy_flow_table(), which will lead to a double-free. Fix this by setting ft->g to NULL in fs_any_create_groups().

INFO

Published Date :

2024-05-17T14:01:48.454Z

Last Modified :

2025-05-04T07:41:10.159Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52667 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
  • Rhel Aus
  • Rhel E4s
  • Rhel Eus
  • Rhel Tus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52667.

URL Resource
https://git.kernel.org/stable/c/2897c981ee63e1be5e530b1042484626a10b26d8 cve-icon cve-icon
https://git.kernel.org/stable/c/65a4ade8a6d205979292e88beeb6a626ddbd4779 cve-icon cve-icon
https://git.kernel.org/stable/c/72a729868592752b5a294d27453da264106983b1 cve-icon cve-icon
https://git.kernel.org/stable/c/aef855df7e1bbd5aa4484851561211500b22707e cve-icon cve-icon
https://git.kernel.org/stable/c/b2fa86b2aceb4bc9ada51cea90f61546d7512cbe cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024051728-CVE-2023-52667-649b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52667 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52667 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact