Security Advisory

CVE-2023-6238

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-21 20:21:20

Last updated 2024-10-17 18:01:41

Assigner redhat

State PUBLISHED

Description

A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access (DMA) into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes and memory corruption.

← Browse all CVEs View on cve.org ↗