Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2023-2235: use-after-free vulnerability in the perf_group_detach function of the Linux Kernel Performance Events (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Red Hat: CVE-2023-2235: use-after-free vulnerability in the perf_group_detach function of the Linux Kernel Performance Events (Multiple Advisories)

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
05/01/2023
Created
06/23/2023
Added
06/22/2023
Modified
09/03/2024

Description

A use-after-free vulnerability in the Linux Kernel Performance Events system can be exploited to achieve local privilege escalation. The perf_group_detach function did not check the event's siblings' attach_state before calling add_event_to_groups(), but remove_on_exec made it possible to call list_del_event() on before detaching from their group, making it possible to use a dangling pointer causing a use-after-free vulnerability. We recommend upgrading past commit fd0815f632c24878e325821943edccc7fde947a2.

Solution(s)

  • redhat-upgrade-kernel
  • redhat-upgrade-kernel-rt

References

  • CVE-2023-2235
  • RHSA-2023:3705
  • RHSA-2023:3708
  • RHSA-2023:3723
  • RHSA-2023:4137
  • RHSA-2023:4138
  • RHSA-2023:4517
  • RHSA-2023:4541
  • RHSA-2023:5627
View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;