CVE-2023-5158

CVE	CVE-2023-5158
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-09-25 16:15:00 UTC
Updated	2023-11-07 04:23:00 UTC
Description	A flaw was found in vringh_kiov_advance in drivers/vhost/vringh.c in the host side of a virtio ring in the Linux Kernel. This issue may result in a denial of service from guest to host via zero length descriptor.

Problem Types: NVD-CWE-noinfo

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Linux	Linux Kernel	All	All	All	All

Reference	Source	Link	Tags
cve-details	MISC	access.redhat.com
2240561 – (CVE-2023-5158) CVE-2023-5158 kernel: Possible DOS from guest to host invringh_kiov_advance in vhost driver at drivers/vhost/vringh.c	MISC	bugzilla.redhat.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

199976 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6534-1)
199980 Ubuntu Security Notification for Linux kernel Vulnerability (USN-6536-1)
199982 Ubuntu Security Notification for Linux kernel (GCP) Vulnerability (USN-6537-1)
199996 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6549-1)
200002 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6534-2)
200003 Ubuntu Security Notification for Linux kernel (GKE) Vulnerabilities (USN-6549-2)
200007 Ubuntu Security Notification for Linux kernel (Low Latency) Vulnerabilities (USN-6549-3)
200010 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6534-3)
200024 Ubuntu Security Notification for Linux kernel (Intel IoTG) Vulnerabilities (USN-6549-4)
200035 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6549-5)
200113 Ubuntu Security Notification for Linux kernel (GCP) Vulnerabilities (USN-6635-1)