CVE-2023-28736

Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.

References

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00690.html

Affected packages

Git / github.com/neilbrown/mdadm

Affected ranges

Type: GIT
Repo: https://github.com/neilbrown/mdadm
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e30ca260741d727e6f444e8f2ce25fe7a5a26567

Affected versions

Other

devel

mdadm-0.*

mdadm-0.7

mdadm-0.7.1

mdadm-0.7.2

mdadm-0.8

mdadm-0.8.1

mdadm-0.8.2

mdadm-1.*

mdadm-1.0.0

mdadm-1.0.1

mdadm-1.0.9

mdadm-1.1.0

mdadm-1.10.0

mdadm-1.11.0

mdadm-1.11.1

mdadm-1.2.0

mdadm-1.3.0

mdadm-1.4.0

mdadm-1.5.0

mdadm-1.6.0

mdadm-1.7.0

mdadm-1.8.0

mdadm-1.9.0

mdadm-2.*

mdadm-2.0

mdadm-2.0-devel-1

mdadm-2.0-devel-2

mdadm-2.0-devel-3

mdadm-2.1

mdadm-2.2

mdadm-2.3

mdadm-2.3.1

mdadm-2.4

mdadm-2.4-pre1

mdadm-2.4.1

mdadm-2.5

mdadm-2.5.1

mdadm-2.5.2

mdadm-2.5.3

mdadm-2.5.4

mdadm-2.5.5

mdadm-2.5.6

mdadm-2.6

mdadm-2.6.1

mdadm-2.6.2

mdadm-2.6.3

mdadm-2.6.4

mdadm-2.6.5

mdadm-2.6.6

mdadm-2.6.7

mdadm-2.6.8

mdadm-2.6.9

mdadm-3.*

mdadm-3.0

mdadm-3.0-devel2

mdadm-3.0-devel3

mdadm-3.0-rc1

mdadm-3.0.1

mdadm-3.0.2

mdadm-3.0.3

mdadm-3.1

mdadm-3.1.1

mdadm-3.1.2

mdadm-3.1.2a

mdadm-3.1.3

mdadm-3.1.4

mdadm-3.1.5

mdadm-3.2

mdadm-3.2.1

mdadm-3.2.2

mdadm-3.2.3

mdadm-3.2.4

mdadm-3.2.5

mdadm-3.3

mdadm-3.3-rc1

mdadm-3.3-rc2

mdadm-3.3.1

mdadm-3.3.2

mdadm-3.3.3

mdadm-3.3.4

mdadm-3.4

mdadm-4.*

mdadm-4.0

mdadm-4.1

mdadm-4.1-rc1

mdadm-4.1-rc2

mdadm-4.2-rc1

mdadm-4.2-rc2

mdadm-4.2-rc3

mdctl-0.*

mdctl-0.5

mdctl-0.6

mdctl-v0.*

mdctl-v0.2

mdctl-v0.3

mdctl-v0.4

mdctl-v0.4.1

mdctl-v0.4.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28736.json"