发布于3月6日3月6日 Members Red Hat: CVE-2023-52801: kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (Multiple Advisories) Severity 4 CVSS (AV:L/AC:L/Au:M/C:N/I:N/A:C) Published 05/21/2024 Created 12/06/2024 Added 12/05/2024 Modified 12/05/2024 Description In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix missing update of domains_itree after splitting iopt_area In iopt_area_split(), if the original iopt_area has filled a domain and is linked to domains_itree, pages_nodes have to be properly reinserted. Otherwise the domains_itree becomes corrupted and we will UAF. Solution(s) redhat-upgrade-kernel redhat-upgrade-kernel-rt References CVE-2023-52801 RHSA-2024:6567
