CVE-2023-52920
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-52920 is a vulnerability affecting the Linux kernel that has been addressed. The issue lies in the BPF (Berkeley Packet Filter) subsystem's precision tracking logic. This vulnerability enables the use of non-r10 registers for spill/fill operations to the stack, which can be tracked using jump history. With this change, the number of verified states can be reduced, improving performance. The difference in self-tests shows a decrease in instructions and states. The pointer cur_hist_entry has been reset to NULL to avoid relying on the last jump history entry's insn_idx, addressing a potential ambiguity problem.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.