We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOC_SETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free problem on a struct gsm_dlci while restarting the gsm mux. This could allow a local unprivileged user to escalate their privileges on the system.
Reserved 2023-12-06 | Published 2023-12-21 | Updated 2024-11-15 | Assigner redhat2023-12-18: | Reported to Red Hat. |
2023-12-21: | Made public. |
access.redhat.com/errata/RHSA-2024:0930 (RHSA-2024:0930)
access.redhat.com/errata/RHSA-2024:0937 (RHSA-2024:0937)
access.redhat.com/errata/RHSA-2024:1018 (RHSA-2024:1018)
access.redhat.com/errata/RHSA-2024:1019 (RHSA-2024:1019)
access.redhat.com/errata/RHSA-2024:1055 (RHSA-2024:1055)
access.redhat.com/errata/RHSA-2024:1250 (RHSA-2024:1250)
access.redhat.com/errata/RHSA-2024:1253 (RHSA-2024:1253)
access.redhat.com/errata/RHSA-2024:1306 (RHSA-2024:1306)
access.redhat.com/errata/RHSA-2024:1607 (RHSA-2024:1607)
access.redhat.com/errata/RHSA-2024:1612 (RHSA-2024:1612)
access.redhat.com/errata/RHSA-2024:1614 (RHSA-2024:1614)
access.redhat.com/errata/RHSA-2024:2093 (RHSA-2024:2093)
access.redhat.com/errata/RHSA-2024:2394 (RHSA-2024:2394)
access.redhat.com/errata/RHSA-2024:2621 (RHSA-2024:2621)
access.redhat.com/errata/RHSA-2024:2697 (RHSA-2024:2697)
access.redhat.com/errata/RHSA-2024:4577 (RHSA-2024:4577)
access.redhat.com/errata/RHSA-2024:4729 (RHSA-2024:4729)
access.redhat.com/errata/RHSA-2024:4731 (RHSA-2024:4731)
access.redhat.com/errata/RHSA-2024:4970 (RHSA-2024:4970)
access.redhat.com/security/cve/CVE-2023-6546
bugzilla.redhat.com/show_bug.cgi?id=2255498 (RHBZ#2255498)
github.com/...ommit/3c4f8333b582487a2d1e02171f1465531cde53e3
www.zerodayinitiative.com/advisories/ZDI-CAN-20527
Support options