AWS Developer Center for PHP

Find tools, docs and sample code to help you run PHP applications on the AWS cloud

The post AWS Developer Center for PHP appeared first on Laravel News.

Join the Laravel Newsletter to get all the latest
Laravel articles like this directly in your inbox.

Source: Read MoreÂ

CVE-2023-53138 – Cisco CAIF Use-After-Free Vulnerability

May 2, 2025

CVE ID : CVE-2023-53138

Published : May 2, 2025, 4:15 p.m. | 34 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

net: caif: Fix use-after-free in cfusbl_device_notify()

syzbot reported use-after-free in cfusbl_device_notify() [1]. This
causes a stack trace like below:

BUG: KASAN: use-after-free in cfusbl_device_notify+0x7c9/0x870 net/caif/caif_usb.c:138
Read of size 8 at addr ffff88807ac4e6f0 by task kworker/u4:6/1214

CPU: 0 PID: 1214 Comm: kworker/u4:6 Not tainted 5.19.0-rc3-syzkaller-00146-g92f20ff72066 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: netns cleanup_net
Call Trace:

__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106
print_address_description.constprop.0.cold+0xeb/0x467 mm/kasan/report.c:313
print_report mm/kasan/report.c:429 [inline]
kasan_report.cold+0xf4/0x1c6 mm/kasan/report.c:491
cfusbl_device_notify+0x7c9/0x870 net/caif/caif_usb.c:138
notifier_call_chain+0xb5/0x200 kernel/notifier.c:87
call_netdevice_notifiers_info+0xb5/0x130 net/core/dev.c:1945
call_netdevice_notifiers_extack net/core/dev.c:1983 [inline]
call_netdevice_notifiers net/core/dev.c:1997 [inline]
netdev_wait_allrefs_any net/core/dev.c:10227 [inline]
netdev_run_todo+0xbc0/0x10f0 net/core/dev.c:10341
default_device_exit_batch+0x44e/0x590 net/core/dev.c:11334
ops_exit_list+0x125/0x170 net/core/net_namespace.c:167
cleanup_net+0x4ea/0xb00 net/core/net_namespace.c:594
process_one_work+0x996/0x1610 kernel/workqueue.c:2289
worker_thread+0x665/0x1080 kernel/workqueue.c:2436
kthread+0x2e9/0x3a0 kernel/kthread.c:376
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:302

When unregistering a net device, unregister_netdevice_many_notify()
sets the device’s reg_state to NETREG_UNREGISTERING, calls notifiers
with NETDEV_UNREGISTER, and adds the device to the todo list.

Later on, devices in the todo list are processed by netdev_run_todo().
netdev_run_todo() waits devices’ reference count become 1 while
rebdoadcasting NETDEV_UNREGISTER notification.

When cfusbl_device_notify() is called with NETDEV_UNREGISTER multiple
times, the parent device might be freed. This could cause UAF.
Processing NETDEV_UNREGISTER multiple times also causes inbalance of
reference count for the module.

This patch fixes the issue by accepting only first NETDEV_UNREGISTER
notification.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Prevent WordPress SQL Injection Attacks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

Borderlands 4 is offering a free weapon skin and Golden Keys to unlock loot before the game is even out

This critically acclaimed debut indie game is an early game of the year contender, and you can play it on Xbox Game Pass right now

Gears of War: Reloaded remasters the game once again for Xbox, Game Pass, PC, and now, PS5 as well

Xbox price hikes hurt its value against PS5, a Microsoft PM roasts Windows 11, and Bing gets unexpected praise — top tech stories

N|Solid 6.1.8: Major AI Upgrades, UX Enhancements, and Tracing Improvements

N|Solid 6.1.8: Major AI Upgrades, UX Enhancements, and Tracing Improvements

The power of spread and rest patterns in JavaScript

Google’s New IDE Redefines Developer Productivity

Borderlands 4 is offering a free weapon skin and Golden Keys to unlock loot before the game is even out

Borderlands 4 is offering a free weapon skin and Golden Keys to unlock loot before the game is even out

This critically acclaimed debut indie game is an early game of the year contender, and you can play it on Xbox Game Pass right now

Gears of War: Reloaded remasters the game once again for Xbox, Game Pass, PC, and now, PS5 as well

AWS Developer Center for PHP

Apache Parquet Java Vulnerability CVE-2025-46762 Exposes Systems to Remote Code Execution Attacks

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

10 Facts you probably didn’t know about Windows as Microsoft turns 50

This lightweight, easy-to-use Linux OS can save your aging Windows 10 PC

How to Remove Strikethrough Text from PDFs Using Python

CVE-2025-4199 – Abundatrade Plugin for WordPress CSRF Vulnerability

CVE-2023-53138 – Cisco CAIF Use-After-Free Vulnerability

Streamlining Success: A Guide to the Optimizely Configured Commerce Implementation Timeline

Meta cuts equity-based awards for employees but approves up to 200% bonus for bosses

How to Build a JavaScript Accordion with Overlapping Animations

AWS Developer Center for PHP

Related Posts