{"id":"CVE-2023-0590","details":"A use-after-free flaw was found in qdisc_graft in net/sched/sch_api.c in the Linux Kernel due to a race problem. This flaw leads to a denial of service issue. If patch ebda44da44f6 (\"net: sched: fix race condition in qdisc_graft()\") not applied yet, then kernel could be affected.","modified":"2026-03-13T06:49:57.967342Z","published":"2023-03-23T21:15:19.150Z","related":["ALSA-2023:2148","ALSA-2023:2458","ALSA-2023:7077","SUSE-SU-2023:0433-1","SUSE-SU-2023:0485-1","SUSE-SU-2023:0488-1","SUSE-SU-2023:0618-1","SUSE-SU-2023:0634-1","SUSE-SU-2023:0767-1","SUSE-SU-2023:0768-1","SUSE-SU-2023:0774-1","SUSE-SU-2023:0778-1","SUSE-SU-2023:0779-1","SUSE-SU-2023:0780-1","SUSE-SU-2023:0852-1","SUSE-SU-2023:1608-1","SUSE-SU-2023:1801-1","SUSE-SU-2023:1803-1","SUSE-SU-2023:1848-1","SUSE-SU-2023:1971-1","SUSE-SU-2023:1973-1","SUSE-SU-2023:1975-1","SUSE-SU-2023:1982-1","SUSE-SU-2023:1983-1","SUSE-SU-2023:1995-1","SUSE-SU-2023:2007-1","SUSE-SU-2023:2009-1","SUSE-SU-2023:2023-1","SUSE-SU-2023:2024-1","SUSE-SU-2023:2031-1","SUSE-SU-2023:2035-1","SUSE-SU-2023:2043-1","SUSE-SU-2023:2232-1","SUSE-SU-2023:2506-1","SUSE-SU-2023:2646-1","SUSE-SU-2023:2805-1","SUSE-SU-2023:2809-1","SUSE-SU-2023:2871-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html"},{"type":"WEB","url":"https://lore.kernel.org/all/20221018203258.2793282-1-edumazet%40google.com/"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-0590.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"6.1"}]},{"events":[{"introduced":"0"},{"last_affected":"6.1-rc1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}