CVE-2023-54234

Published: Dic 30, 2025 Last Modified: Dic 31, 2025

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

In the Linux kernel, the following vulnerability has been resolved:

scsi: mpi3mr: Fix missing mrioc->evtack_cmds initialization

Commit c1af985d27da ('scsi: mpi3mr: Add Event acknowledgment logic')
introduced an array mrioc->evtack_cmds but initialization of the array
elements was missed. They are just zero cleared. The function
mpi3mr_complete_evt_ack() refers host_tag field of the elements. Due to the
zero value of the host_tag field, the function calls clear_bit() for
mrico->evtack_cmds_bitmap with wrong bit index. This results in memory
access to invalid address and 'BUG: KASAN: use-after-free'. This BUG was
observed at eHBA-9600 firmware update to version 8.3.1.0. To fix it, add
the missing initialization of mrioc->evtack_cmds.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0002

Percentile

0,1th

Updated

EPSS Score Trend (Last 76 Days)

https://git.kernel.org/stable/c/4e0dfdb48a824deac3dfbc67fb8…

https://git.kernel.org/stable/c/4e0dfdb48a824deac3dfbc67fb856ef2aee13529

https://git.kernel.org/stable/c/67989091e11a974003ddf2ec39b…

https://git.kernel.org/stable/c/67989091e11a974003ddf2ec39bc613df8eadd83

https://git.kernel.org/stable/c/e39ea831ebad4ab15c4748cb62a…

https://git.kernel.org/stable/c/e39ea831ebad4ab15c4748cb62a397a8abcca36e

CVE-2023-54234

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 76 Days)

Iscriviti alla newsletter