CVE-2023-52859
Published: May 21, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: perf: hisi: Fix use-after-free when register pmu fails When we fail to register the uncore pmu, the pmu context may not been allocated. The error handing will call cpuhp_state_remove_instance() to call uncore pmu offline callback, which migrate the pmu context. Since that's liable to lead to some kind of use-after-free. Use cpuhp_state_remove_instance_nocalls() instead of cpuhp_state_remove_instance() so that the notifiers don't execute after the PMU device has been failed to register.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 3bf30882c3c7b6e376d9d6d04082c9aa2d2ac30a - < 0e1e88bba286621b886218363de07b319d6208b2affected 3bf30882c3c7b6e376d9d6d04082c9aa2d2ac30a - < b660420f449d094b1fabfa504889810b3a63cdd5affected 3bf30882c3c7b6e376d9d6d04082c9aa2d2ac30a - < 3405f364f82d4f5407a8b4c519dc15d24b847fdaaffected 3bf30882c3c7b6e376d9d6d04082c9aa2d2ac30a - < 75bab28ffd05ec8879c197890b1bd1dfec8d3f63affected 3bf30882c3c7b6e376d9d6d04082c9aa2d2ac30a - < b805cafc604bfdb671fae7347a57f51154afa735 |
Linux | Linux | affected 5.13unaffected 0 - < 5.13unaffected 5.15.139 - <= 5.15.*unaffected 6.1.63 - <= 6.1.*unaffected 6.5.12 - <= 6.5.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now