VDB

CISA-2023-3141

CISA-2023-3141 PUBLISHED CVSS 7.1 HIGH

Reported by redhat · Published June 9, 2023

A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.

Risk Scores

CVSS 3.1
7.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected Products

VendorProductVersions
n/aKernelKenrel version prior to Kernel 6.4-rc1
n/aKernelKenrel version prior to Kernel 6.4-rc1, *

Timeline

  • Jun 9, 2023 CVE Published
  • Mar 11, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›