{"id":"CVE-2023-6931","details":"A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation.\n\nA perf_event's read_size can overflow, leading to an heap out-of-bounds increment or write in perf_read_group().\n\nWe recommend upgrading past commit 382c27f4ed28f803b1f1473ac2d8db0afc795a1b.","modified":"2026-03-13T07:50:49.069584Z","published":"2023-12-19T14:15:08.277Z","related":["ALSA-2024:1607","ALSA-2024:2394","SUSE-SU-2024:0110-1","SUSE-SU-2024:0113-1","SUSE-SU-2024:0115-1","SUSE-SU-2024:0117-1","SUSE-SU-2024:0118-1","SUSE-SU-2024:0120-1","SUSE-SU-2024:0129-1","SUSE-SU-2024:0141-1","SUSE-SU-2024:0153-1","SUSE-SU-2024:0154-1","SUSE-SU-2024:0156-1","SUSE-SU-2024:0160-1","SUSE-SU-2024:1677-1","SUSE-SU-2024:1680-1","SUSE-SU-2024:1686-1","SUSE-SU-2024:1695-1","SUSE-SU-2024:1696-1","SUSE-SU-2024:1706-1","SUSE-SU-2024:1709-1","SUSE-SU-2024:1712-1","SUSE-SU-2024:1720-1","SUSE-SU-2024:1726-1","SUSE-SU-2024:1729-1","SUSE-SU-2024:1732-1","SUSE-SU-2024:1735-1","SUSE-SU-2024:1736-1","SUSE-SU-2024:1739-1","SUSE-SU-2024:1742-1","SUSE-SU-2024:1748-1","SUSE-SU-2024:1751-1","SUSE-SU-2024:1757-1","SUSE-SU-2024:2099-1","SUSE-SU-2024:2115-1","SUSE-SU-2024:2145-1","SUSE-SU-2024:2166-1","SUSE-SU-2024:2202-1","SUSE-SU-2024:2205-1"],"references":[{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=382c27f4ed28f803b1f1473ac2d8db0afc795a1b"},{"type":"FIX","url":"https://kernel.dance/382c27f4ed28f803b1f1473ac2d8db0afc795a1b"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-6931.json","unresolved_ranges":[{"events":[{"introduced":"4.3"},{"fixed":"6.7"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}