Security Advisory

CVE-2023-28577

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-08 09:15:07

Last updated 2024-08-02 13:43:23

Assigner qualcomm

State PUBLISHED

Description

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.

← Browse all CVEs View on cve.org ↗