CVE-2023-52656

low-risk
Published 2024-05-14

In the Linux kernel, the following vulnerability has been resolved: io_uring: drop any code related to SCM_RIGHTS This is dead code after we dropped support for passing io_uring fds over SCM_RIGHTS, get rid of it.

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (2)

Affected Vendors

Debian Linux

References (14)

Patch https://git.kernel.org/stable/c/6e5e6d274956305f1fc0340522b38f5f5be74bdb
Patch https://git.kernel.org/stable/c/6fc19b3d8a45ff0e5d50ec8184cee1d5eac1a8ba
Patch https://git.kernel.org/stable/c/88c49d9c896143cdc0f77197c4dcf24140375e89
Patch https://git.kernel.org/stable/c/a3812a47a32022ca76bf46ddacdd823dc2aabf8b
Patch https://git.kernel.org/stable/c/a6771f343af90a25f3a14911634562bb5621df02
Patch https://git.kernel.org/stable/c/cfb24022bb2c31f1f555dc6bc3cc5e2547446fb3
Patch https://git.kernel.org/stable/c/d909d381c3152393421403be4b6435f17a2378b4
Patch https://git.kernel.org/stable/c/6e5e6d274956305f1fc0340522b38f5f5be74bdb
Patch https://git.kernel.org/stable/c/88c49d9c896143cdc0f77197c4dcf24140375e89
Patch https://git.kernel.org/stable/c/a3812a47a32022ca76bf46ddacdd823dc2aabf8b
Patch https://git.kernel.org/stable/c/a6771f343af90a25f3a14911634562bb5621df02
Patch https://git.kernel.org/stable/c/cfb24022bb2c31f1f555dc6bc3cc5e2547446fb3
Patch https://git.kernel.org/stable/c/d909d381c3152393421403be4b6435f17a2378b4
Third Party Advisory https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
25
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 7/34 · Low