CVE-2023-6238 Information

Description

A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. An unprivileged user could specify a small meta buffer and let the device perform larger Direct Memory Access (DMA) into the same buffer overwriting unrelated kernel memory causing random kernel crashes and memory corruption.

Reference

https://access.redhat.com/security/cve/CVE-2023-6238 https://bugzilla.redhat.com/show_bug.cgi?id=2250834