Unrated severityNVD Advisory· Published Feb 17, 2023· Updated Mar 12, 2025

Use after free in io_uring in the Linux Kernel

CVE-2023-23586

Description

Due to a vulnerability in the io_uring subsystem, it is possible to leak kernel memory information to the user process. timens_install calls current_is_single_threaded to determine if the current process is single-threaded, but this call does not consider io_uring's io_worker threads, thus it is possible to insert a time namespace's vvar page to process's memory space via a page fault. When this time namespace is destroyed, the vvar page is also freed, but not removed from the process' memory, and a next page allocated by the kernel will be still available from the user-space process and can leak memory contents via this (read-only) use-after-free vulnerability. We recommend upgrading past version 5.10.161 or commit 788d0824269bef539fe31a785b1517882eafed93 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/io_uring

Affected products

102

osv-coords101 versions
pkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2015.4 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Proxy%204.2 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Server%204.2 pkg:rpm/suse/kernel-default&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-default&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%204.2 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Server%204.2 pkg:rpm/suse/kernel-docs&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-docs&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_37&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2 pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_33&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Manager%20Proxy%204.2 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Manager%20Server%204.2 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP3 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-source&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%204.2 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Server%204.2 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/kernel-syms&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP3 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Manager%20Server%204.2
< 5.3.18-150300.59.124.1+ 100 more
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1.150200.9.75.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150200.24.154.1.150200.9.75.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150200.24.154.1.150200.9.75.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150200.24.154.1.150200.9.75.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150300.59.124.1.150300.18.72.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.2
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.2
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.2
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.2
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 1-150200.5.3.1
- (no CPE)range: < 1-150300.7.3.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.130.1
- (no CPE)range: < 5.3.18-150300.130.1
- (no CPE)range: < 5.3.18-150300.130.1
- (no CPE)range: < 5.3.18-150300.130.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.130.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150200.24.154.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.130.1
- (no CPE)range: < 5.3.18-150300.59.124.1
- (no CPE)range: < 5.3.18-150300.59.124.1
Linux/Linux Kernelv5
Range: 5.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000