CVE-2023-52646: aio: fix mremap after fork null-deref

Description

In the Linux kernel, the following vulnerability has been resolved:

aio: fix mremap after fork null-deref

Commit e4a0d3e720e7 ("aio: Make it possible to remap aio ring") introduced
a null-deref if mremap is called on an old aio mapping after fork as
mm->ioctx_table will be set to NULL.

[[email protected]: fix 80 column issue]

Classification

CVE ID: CVE-2023-52646

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.06% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/808f1e4b5723ae4eda724d2ad6f6638905eefd95
https://git.kernel.org/stable/c/d8dca1bfe9adcae38b35add64977818c0c13dd22
https://git.kernel.org/stable/c/4326d0080f7e84fba775da41d158f46cf9d3f1c2
https://git.kernel.org/stable/c/c261f798f7baa8080cf0214081d43d5f86bb073f
https://git.kernel.org/stable/c/178993157e8c50aef7f35d7d6d3b44bb428199e1
https://git.kernel.org/stable/c/af126acf01a12bdb04986fd26fc2eb3b40249e0d
https://git.kernel.org/stable/c/81e9d6f8647650a7bead74c5f926e29970e834d1

Timeline

2024-12-20 00:31:23 UTC
CVE

aio: fix mremap after fork null-deref