发布于3月6日3月6日 Members Oracle Linux: CVE-2023-1989: ELSA-2023-7077:kernel security, bug fix, and enhancement update (IMPORTANT) (Multiple Advisories) Severity 6 CVSS (AV:L/AC:H/Au:S/C:C/I:C/A:C) Published 03/09/2023 Created 11/15/2023 Added 11/13/2023 Modified 01/23/2025 Description A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices. A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. A call to btsdio_remove with an unfinished job may cause a race problem which leads to a UAF on hdev devices. Solution(s) oracle-linux-upgrade-kernel oracle-linux-upgrade-kernel-uek References https://attackerkb.com/topics/cve-2023-1989 CVE - 2023-1989 ELSA-2023-7077 ELSA-2024-12354 ELSA-2023-13005 ELSA-2023-6583 ELSA-2023-12974 ELSA-2023-13001 View more
