CVE-2023-52920

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 5, 2024
Updated: Nov 7, 2024
CWE ID 476

Summary

CVE-2023-52920 is a vulnerability affecting the Linux kernel that has been addressed. The issue lies in the BPF (Berkeley Packet Filter) subsystem's precision tracking logic. This vulnerability enables the use of non-r10 registers for spill/fill operations to the stack, which can be tracked using jump history. With this change, the number of verified states can be reduced, improving performance. The difference in self-tests shows a decrease in instructions and states. The pointer cur_hist_entry has been reset to NULL to avoid relying on the last jump history entry's insn_idx, addressing a potential ambiguity problem.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share