Linux Kernel Vulnerability in Cacheinfo Component Affecting Shared CPUs
CVE-2023-53254
What is CVE-2023-53254?
A vulnerability has been identified in the Linux kernel's cacheinfo component that affects the handling of shared CPU maps across different levels of cache hierarchy. Specifically, the issue arises when CPUs with differing cache structures share caches. This inconsistency can lead to slab-out-of-bounds access, posing a risk to system integrity. The vulnerability occurs when caches with the same index do not align between CPUs, resulting in potential mismatches in the shared_cpu_map. Recent patches aim to restrict this issue by ensuring that each cache is verified for shared status among all CPUs.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2f588d0345d69a35e451077afed428fd057a5e34
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 198102c9103fc78d8478495971947af77edb05c1