QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2023-52462

Back to search

CVE-2023-52462

Published: Feb 23, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: fix check for attempt to corrupt spilled pointer When register is spilled onto a stack as a 1/2/4-byte register, we set slot_type[BPF_REG_SIZE - 1] (plus potentially few more below it, depending on actual spill size). So to check if some stack slot has spilled register we need to consult slot_type[7], not slot_type[0]. To avoid the need to remember and double-check this in the future, just use is_spilled_reg() helper.

VendorProductVersions

Linux

Linux

affected
cdd73a5ed0840da88a3b9ad353f568e6f156d417 - < 2757f17972d87773b3677777f5682510f13c66ef
affected
07c286c10a9cedbd71f20269ff3a4e73d9aab2fe - < 67e6707f07354ed1acb4e65552e97c60cf9d69cf
affected
27113c59b6d0a587b29ae72d4ff3f832f58b0651 - < fc3e3c50a0a4cac1463967c110686189e4a59104
affected
27113c59b6d0a587b29ae72d4ff3f832f58b0651 - < 8dc15b0670594543c356567a1a45b0182ec63174
affected
27113c59b6d0a587b29ae72d4ff3f832f58b0651 - < 40617d45ea05535105e202a8a819e388a2b1f036

+3 more versions

Linux

Linux

affected
5.16
unaffected
0 - < 5.16
unaffected
5.10.209 - <= 5.10.*
unaffected
5.15.148 - <= 5.15.*
unaffected
6.1.75 - <= 6.1.*

+3 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now