{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-52654","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-03-06T09:52:12.098Z","datePublished":"2024-05-09T16:37:04.293Z","dateUpdated":"2025-05-04T12:49:22.099Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T12:49:22.099Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/af_unix: disable sending io_uring over sockets\n\nFile reference cycles have caused lots of problems for io_uring\nin the past, and it still doesn't work exactly right and races with\nunix_stream_read_generic(). The safest fix would be to completely\ndisallow sending io_uring files via sockets via SCM_RIGHT, so there\nare no possible cycles invloving registered files and thus rendering\nSCM accounting on the io_uring side unnecessary."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["io_uring/rsrc.h","net/core/scm.c"],"versions":[{"version":"04df9719df1865f6770af9bc7880874af0e594b2","lessThan":"18824f592aad4124d79751bbc1500ea86ac3ff29","status":"affected","versionType":"git"},{"version":"c378c479c5175833bb22ff71974cda47d7b05401","lessThan":"3fe1ea5f921bf5b71cbfdc4469fb96c05936610e","status":"affected","versionType":"git"},{"version":"813d8fe5d30388f73a21d3a2bf46b0a1fd72498c","lessThan":"bcedd497b3b4a0be56f3adf7c7542720eced0792","status":"affected","versionType":"git"},{"version":"0091bfc81741b8d3aeb3b7ab8636f911b2de6e80","lessThan":"f2f57f51b53be153a522300454ddb3887722fb2c","status":"affected","versionType":"git"},{"version":"0091bfc81741b8d3aeb3b7ab8636f911b2de6e80","lessThan":"5a33d385eb36991a91e3dddb189d8679e2aac2be","status":"affected","versionType":"git"},{"version":"0091bfc81741b8d3aeb3b7ab8636f911b2de6e80","lessThan":"705318a99a138c29a512a72c3e0043b3cd7f55f4","status":"affected","versionType":"git"},{"version":"b4293c01ee0d0ecdd3cb5801e13f62271144667a","status":"affected","versionType":"git"},{"version":"75e94c7e8859e58aadc15a98cc9704edff47d4f2","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["io_uring/rsrc.h","net/core/scm.c"],"versions":[{"version":"6.1","status":"affected"},{"version":"0","lessThan":"6.1","status":"unaffected","versionType":"semver"},{"version":"5.4.264","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.204","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.143","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.68","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.7","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.7","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.220","versionEndExcluding":"5.4.264"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10.150","versionEndExcluding":"5.10.204"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15.75","versionEndExcluding":"5.15.143"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.1.68"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.6.7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","versionEndExcluding":"6.7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.19.17"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.3"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29"},{"url":"https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e"},{"url":"https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792"},{"url":"https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c"},{"url":"https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be"},{"url":"https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4"}],"title":"io_uring/af_unix: disable sending io_uring over sockets","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CISA ADP Vulnrichment","metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2023-52654","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-05-09T18:37:06.033789Z"}}}],"providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-04T17:23:29.618Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T23:03:21.358Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4","tags":["x_transferred"]}]}]}}