CVE-2023-52654 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: io_uring/af_unix: disable sending io_uring over sockets File reference cycles have caused lots of problems for io_uring in the past, and it still doesn't work exactly right and races with unix_stream_read_generic(). The safest fix would be to completely disallow sending io_uring files via sockets via SCM_RIGHT, so there are no possible cycles invloving registered files and thus rendering SCM accounting on the io_uring side unnecessary.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Linux	Linux Kernel

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29
https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e
https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be
https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4
https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792
https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c
https://lore.kernel.org/linux-cve-announce/2024050833-CVE-2023-52654-1ae1@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-52654
https://www.cve.org/CVERecord?id=CVE-2023-52654

History

Mon, 04 Nov 2024 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-09T16:37:04.293Z

Updated: 2025-05-04T12:49:22.099Z

Reserved: 2024-03-06T09:52:12.098Z

Link: CVE-2023-52654

Vulnrichment

Updated: 2024-08-02T23:03:21.358Z

NVD

Status : Awaiting Analysis

Published: 2024-05-14T14:23:13.130

Modified: 2024-11-21T08:40:17.703

Link: CVE-2023-52654

Redhat

Severity : Moderate

Publid Date: 2024-05-08T00:00:00Z

Links: CVE-2023-52654 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-52654", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-03-06T09:52:12.098Z", "datePublished": "2024-05-09T16:37:04.293Z", "dateUpdated": "2025-05-04T12:49:22.099Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T12:49:22.099Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/af_unix: disable sending io_uring over sockets\n\nFile reference cycles have caused lots of problems for io_uring\nin the past, and it still doesn't work exactly right and races with\nunix_stream_read_generic(). The safest fix would be to completely\ndisallow sending io_uring files via sockets via SCM_RIGHT, so there\nare no possible cycles invloving registered files and thus rendering\nSCM accounting on the io_uring side unnecessary."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["io_uring/rsrc.h", "net/core/scm.c"], "versions": [{"version": "04df9719df1865f6770af9bc7880874af0e594b2", "lessThan": "18824f592aad4124d79751bbc1500ea86ac3ff29", "status": "affected", "versionType": "git"}, {"version": "c378c479c5175833bb22ff71974cda47d7b05401", "lessThan": "3fe1ea5f921bf5b71cbfdc4469fb96c05936610e", "status": "affected", "versionType": "git"}, {"version": "813d8fe5d30388f73a21d3a2bf46b0a1fd72498c", "lessThan": "bcedd497b3b4a0be56f3adf7c7542720eced0792", "status": "affected", "versionType": "git"}, {"version": "0091bfc81741b8d3aeb3b7ab8636f911b2de6e80", "lessThan": "f2f57f51b53be153a522300454ddb3887722fb2c", "status": "affected", "versionType": "git"}, {"version": "0091bfc81741b8d3aeb3b7ab8636f911b2de6e80", "lessThan": "5a33d385eb36991a91e3dddb189d8679e2aac2be", "status": "affected", "versionType": "git"}, {"version": "0091bfc81741b8d3aeb3b7ab8636f911b2de6e80", "lessThan": "705318a99a138c29a512a72c3e0043b3cd7f55f4", "status": "affected", "versionType": "git"}, {"version": "b4293c01ee0d0ecdd3cb5801e13f62271144667a", "status": "affected", "versionType": "git"}, {"version": "75e94c7e8859e58aadc15a98cc9704edff47d4f2", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["io_uring/rsrc.h", "net/core/scm.c"], "versions": [{"version": "6.1", "status": "affected"}, {"version": "0", "lessThan": "6.1", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.264", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.204", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.143", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.68", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.7", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.7", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.4.220", "versionEndExcluding": "5.4.264"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.10.150", "versionEndExcluding": "5.10.204"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.15.75", "versionEndExcluding": "5.15.143"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.1.68"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.6.7"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.7"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.19.17"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.0.3"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29"}, {"url": "https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e"}, {"url": "https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792"}, {"url": "https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c"}, {"url": "https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be"}, {"url": "https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4"}], "title": "io_uring/af_unix: disable sending io_uring over sockets", "x_generator": {"engine": "bippy-1.2.0"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52654", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-09T18:37:06.033789Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:23:29.618Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:21.358Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:21.358Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52654", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-09T18:37:06.033789Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-23T19:01:24.204Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "io_uring/af_unix: disable sending io_uring over sockets", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "04df9719df1865f6770af9bc7880874af0e594b2", "lessThan": "18824f592aad4124d79751bbc1500ea86ac3ff29", "versionType": "git"}, {"status": "affected", "version": "c378c479c5175833bb22ff71974cda47d7b05401", "lessThan": "3fe1ea5f921bf5b71cbfdc4469fb96c05936610e", "versionType": "git"}, {"status": "affected", "version": "813d8fe5d30388f73a21d3a2bf46b0a1fd72498c", "lessThan": "bcedd497b3b4a0be56f3adf7c7542720eced0792", "versionType": "git"}, {"status": "affected", "version": "0091bfc81741b8d3aeb3b7ab8636f911b2de6e80", "lessThan": "f2f57f51b53be153a522300454ddb3887722fb2c", "versionType": "git"}, {"status": "affected", "version": "0091bfc81741b8d3aeb3b7ab8636f911b2de6e80", "lessThan": "5a33d385eb36991a91e3dddb189d8679e2aac2be", "versionType": "git"}, {"status": "affected", "version": "0091bfc81741b8d3aeb3b7ab8636f911b2de6e80", "lessThan": "705318a99a138c29a512a72c3e0043b3cd7f55f4", "versionType": "git"}, {"status": "affected", "version": "b4293c01ee0d0ecdd3cb5801e13f62271144667a", "versionType": "git"}, {"status": "affected", "version": "75e94c7e8859e58aadc15a98cc9704edff47d4f2", "versionType": "git"}], "programFiles": ["io_uring/rsrc.h", "net/core/scm.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "6.1"}, {"status": "unaffected", "version": "0", "lessThan": "6.1", "versionType": "semver"}, {"status": "unaffected", "version": "5.4.264", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.204", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.15.143", "versionType": "semver", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "6.1.68", "versionType": "semver", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.6.7", "versionType": "semver", "lessThanOrEqual": "6.6.*"}, {"status": "unaffected", "version": "6.7", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["io_uring/rsrc.h", "net/core/scm.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29"}, {"url": "https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e"}, {"url": "https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792"}, {"url": "https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c"}, {"url": "https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be"}, {"url": "https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4"}], "x_generator": {"engine": "bippy-1.2.0"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/af_unix: disable sending io_uring over sockets\n\nFile reference cycles have caused lots of problems for io_uring\nin the past, and it still doesn't work exactly right and races with\nunix_stream_read_generic(). The safest fix would be to completely\ndisallow sending io_uring files via sockets via SCM_RIGHT, so there\nare no possible cycles invloving registered files and thus rendering\nSCM accounting on the io_uring side unnecessary."}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.4.264", "versionStartIncluding": "5.4.220"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.10.204", "versionStartIncluding": "5.10.150"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.15.143", "versionStartIncluding": "5.15.75"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "6.1.68", "versionStartIncluding": "6.1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "6.6.7", "versionStartIncluding": "6.1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "6.7", "versionStartIncluding": "6.1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionStartIncluding": "5.19.17"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionStartIncluding": "6.0.3"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T12:49:22.099Z"}}}, "cveMetadata": {"cveId": "CVE-2023-52654", "state": "PUBLISHED", "dateUpdated": "2025-05-04T12:49:22.099Z", "dateReserved": "2024-03-06T09:52:12.098Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-09T16:37:04.293Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/af_unix: disable sending io_uring over sockets\n\nFile reference cycles have caused lots of problems for io_uring\nin the past, and it still doesn't work exactly right and races with\nunix_stream_read_generic(). The safest fix would be to completely\ndisallow sending io_uring files via sockets via SCM_RIGHT, so there\nare no possible cycles invloving registered files and thus rendering\nSCM accounting on the io_uring side unnecessary."}, {"lang": "es", "value": "En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: io_uring/af_unix: deshabilita el env\u00edo de io_uring a trav\u00e9s de sockets Los ciclos de referencia de archivos han causado muchos problemas para io_uring en el pasado, y todav\u00eda no funciona exactamente correctamente y corre con unix_stream_read_generic(). La soluci\u00f3n m\u00e1s segura ser\u00eda no permitir por completo el env\u00edo de archivos io_uring a trav\u00e9s de sockets a trav\u00e9s de SCM_RIGHT, de modo que no haya ciclos posibles que involucren archivos registrados y, por lo tanto, hagan innecesaria la contabilidad SCM en el lado io_uring."}], "id": "CVE-2023-52654", "lastModified": "2024-11-21T08:40:17.703", "metrics": {}, "published": "2024-05-14T14:23:13.130", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/18824f592aad4124d79751bbc1500ea86ac3ff29"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/3fe1ea5f921bf5b71cbfdc4469fb96c05936610e"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/5a33d385eb36991a91e3dddb189d8679e2aac2be"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/705318a99a138c29a512a72c3e0043b3cd7f55f4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/bcedd497b3b4a0be56f3adf7c7542720eced0792"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/f2f57f51b53be153a522300454ddb3887722fb2c"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}

{"bugzilla": {"description": "kernel: io_uring/af_unix: disable sending io_uring over sockets", "id": "2280458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280458"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "details": ["In the Linux kernel, the following vulnerability has been resolved:\nio_uring/af_unix: disable sending io_uring over sockets\nFile reference cycles have caused lots of problems for io_uring\nin the past, and it still doesn't work exactly right and races with\nunix_stream_read_generic(). The safest fix would be to completely\ndisallow sending io_uring files via sockets via SCM_RIGHT, so there\nare no possible cycles invloving registered files and thus rendering\nSCM accounting on the io_uring side unnecessary.", "A security vulnerability was identified in the Linux kernel's io_uring subsystem, specifically related to the handling of file descriptors over UNIX domain sockets. The issue arises from the potential for file reference cycles when io_uring file descriptors are transmitted over sockets using the SCM_RIGHTS mechanism. These cycles can lead to resource leaks and race conditions, particularly with the unix_stream_read_generic() function."], "name": "CVE-2023-52654", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-05-08T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-52654\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-52654\nhttps://lore.kernel.org/linux-cve-announce/2024050833-CVE-2023-52654-1ae1@gregkh/T"], "threat_severity": "Moderate"}