#VU91066 Use-after-free in Linux kernel


Published: 2024-06-04

Vulnerability identifier: #VU91066

Vulnerability risk: Low

CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-52478

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the hidpp_probe() function in drivers/hid/hid-logitech-hidpp.c. A local user can escalate privileges on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://git.kernel.org/stable/c/ca0c4cc1d215dc22ab0e738c9f017c650f3183f5
http://git.kernel.org/stable/c/44481b244fcaa2b895a53081d6204c574720c38c
http://git.kernel.org/stable/c/cd0e2bf7fb22fe9b989c59c42dca06367fd10e6b
http://git.kernel.org/stable/c/093af62c023537f097d2ebdfaa0bc7c1a6e874e1
http://git.kernel.org/stable/c/28ddc1e0b898291323b62d770b1b931de131a528
http://git.kernel.org/stable/c/fd72ac9556a473fc7daf54efb6ca8a97180d621d
http://git.kernel.org/stable/c/f7b2c7d9831af99369fe8ad9b2a68d78942f414e
http://git.kernel.org/stable/c/dac501397b9d81e4782232c39f94f4307b137452

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell Cloud Tiering Appliance
Multiple vulnerabilities in Dell Secure Connect Gateway
Use-after-free in Linux kernel hid driver