linux 安全漏洞 (CVE-2023-33288)

admin

0
文章

0
评论

2023-11-29 23:24:38 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

低危 linux 安全漏洞 (CVE-2023-33288)

CVE编号

CVE-2023-33288

利用情况

暂无

补丁情况

官方补丁

披露时间

2023-05-22

漏洞描述

An issue was discovered in the Linux kernel before 6.2.9. A use-after-free flaw was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race problem.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.9
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=47...
https://github.com/torvalds/linux/commit/47c29d69212911f50bdcdd0564b5999a559010d4
https://lore.kernel.org/all/CAHk-=whcaHLNpb7Mu_QX7ABwPgyRyfW-V8=v4Mv0S22fpjY4...
https://lore.kernel.org/lkml/20230309174728.233732-1-zyytlz.wz%40163.com/

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	anolis_os_23	kernel	*		Up to (excluding) 5.10
	运行在以下环境
	系统	anolis_os_8	kernel	*		Up to (excluding) 5.10
	运行在以下环境
	系统	debian_10	linux	*		Up to (including) 4.19.249-2
	运行在以下环境
	系统	debian_11	linux	*		Up to (excluding) 5.10.178-1
	运行在以下环境
	系统	debian_12	linux	*		Up to (excluding) 6.1.25-1
	运行在以下环境
	系统	debian_sid	linux	*		Up to (excluding) 6.1.25-1
	运行在以下环境
	系统	kylinos_aarch64_V10SP1	kernel	*		Up to (excluding) 4.19.90-23.37.v2101.ky10
	运行在以下环境
	系统	kylinos_x86_64_V10SP1	kernel	*		Up to (excluding) 4.19.90-23.37.v2101.ky10
	运行在以下环境
	系统	linux	linux_kernel	*		Up to (excluding) 6.2.9
	运行在以下环境
	系统	opensuse_5.3	kernel	*		Up to (excluding) 5.14.21-150400.24.66.1.150400.24.29.1
	运行在以下环境
	系统	opensuse_Leap_15.4	dtb-al	*		Up to (excluding) 5.14.21-150400.24.66.1
	运行在以下环境
	系统	opensuse_Leap_15.5	kernel	*		Up to (excluding) 5.14.21-150500.55.7.1
	运行在以下环境
	系统	ubuntu_20.04	linux-bluefield	*		Up to (excluding) 5.15.0-1039.44~20.04.1
	运行在以下环境
	系统	ubuntu_22.04	linux-bluefield	*		Up to (excluding) 5.15.0-1039.44
	运行在以下环境
	系统	unionos_a	kernel	*		Up to (excluding) 5.10.0-37.4.uelc20