VIR Vulnerability Intelligence Relay

CVE-2023-54030

high
Published 2024-04-30 · Modified 2024-04-30
CVSS v3
VIR risk
8.0

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/net: don't overflow multishot recv Don't allow overflowing multishot recv CQEs, it might get out of hand, hurt performance, and in the worst case scenario OOM the task.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

OS impact
OSVersionStatusFixed in
redhat rhel9fixed
suse slesaffected
debian debianbookwormaffected
debian debianbullseyefixed0
debian debianforkyfixed6.5.3-1
debian debiansidfixed6.5.3-1
debian debiantrixiefixed6.5.3-1

References

💬 Discuss CVE-2023-54030 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.