Vulnerabilities

CVE-2023-6238

by Fred · 21/11/2023

A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. An unprivileged user could specify a small meta buffer and let the device perform larger Direct Memory Access (DMA) into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes and memory corruption.

Date published : 2023-11-21

https://bugzilla.redhat.com/show_bug.cgi?id=2250834

https://access.redhat.com/security/cve/CVE-2023-6238

Similar

Tags: Cybersecurity Alert