CVE-2023-1032
- Source
- https://cve.org/CVERecord?id=CVE-2023-1032
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1032.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-1032
- Downstream
- Published
- 2024-01-08T19:15:08.663Z
- Modified
- 2026-02-22T07:40:47.747157Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The Linux kernel iouring IORINGOPSOCKET operation contained a double free in function _syssocketfile() in file net/socket.c. This issue was introduced in da214a475f8bd1d3e9e7a19ddfeb4d1617551bab and fixed in 649c15c7691e9b13cbe9bf6c65c365350e056067.
- References
-
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1032
- https://ubuntu.com/security/notices/USN-5977-1
- https://ubuntu.com/security/notices/USN-6024-1
- https://ubuntu.com/security/notices/USN-6033-1
- https://www.openwall.com/lists/oss-security/2023/03/13/2
- https://www.openwall.com/lists/oss-security/2023/03/13/2
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
- Events
-
Introduced3d7cb6b04c3f3115719235cc6866b10326de34cdFixed457391b0380335d5e9a5babdec90ac53928b23b4
Affected versions
v5.*
v5.19
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7