CVE-2023-54139
Integer Overflow in Linux Kernel tracing/user_events Allows OOB Access
Publication date: 2025-12-24
Last updated on: 2025-12-24
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel involves the tracing/user_events component where the write index, which indicates the event data position, can be negative. Since the index is passed by user processes during write() calls as the first 4 bytes, a negative value could lead to out of bounds accesses on a per-file array. The fix ensures that the write index cannot be negative by returning an error (-EINVAL) to prevent such invalid accesses.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow a user process to cause out of bounds memory access in the kernel, potentially leading to system instability, crashes, or security issues such as information disclosure or privilege escalation.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update the Linux kernel to a version where the fix has been applied, ensuring that the write index cannot be negative and out of bounds accesses are prevented.