CVE-2023-0459 MEDIUM

CVE-2023-0459: Copy_from_user Spectre-V1 Gadget in Linux Kernel

Vendor Linux

Product Linux Kernel

Weakness CWE-763

Published May 25, 2023

Last update September 26, 2024

View on NVD All CVEs

CVSS base score

6.5/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We recommend upgrading beyond commit 74e19ef0ff8061ef55957c3abd71614ef0f42f47

Key dates

02Disclosure timeline

May 25, 2023 CVE published

September 26, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0459 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/763.html

Related vulnerabilities

Identifiers

CVE CVE-2023-0459

CWE CWE-763

CVSS 6.5 / MEDIUM

Affected versions