CVE-2023-4732 MEDIUM

CVE-2023-4732: Kernel: race between task migrating pages and another task calling exit_mmap to release those same pages getting invalid opcode bug in include/linux/swapops.h

Vendor Red Hat
Product Red Hat Enterprise Linux 6
Weakness CWE-366
Published October 3, 2023
Last update November 7, 2025

CVSS base score

4.7/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmd_t x.

Key dates

02Disclosure timeline

October 3, 2023 CVE published
November 7, 2025 Record updated