CVE-2023-52451: 
Linux Kernel vulnerability analysis and mitigation

CVE-2023-52451 is a vulnerability in the Linux kernel affecting the PowerPC pSeries memory hotplug functionality. The issue was discovered on February 22, 2024, and involves a buffer overflow condition in the dlpar_memory_remove_by_index() function. When the LMB (Logical Memory Block) lookup fails to match an entry with a given DRC index, the cursor points beyond the bounds of the drmem lmb array, potentially leading to memory corruption (NVD).

The vulnerability occurs in the powerpc/pseries/memhp subsystem when dlpar_memory_remove_by_index() accesses beyond the bounds of the drmem lmb array. Specifically, when the search fails, the cursor points to &drmem_info->lmbs[drmem_info->n_lmbs], which is one element past the last valid entry in the array. The debug message then attempts to dereference this invalid pointer. The issue was confirmed using Kernel Address Sanitizer (KASAN). The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability could lead to a buffer overflow condition, potentially resulting in system crashes, memory corruption, or possible privilege escalation in the Linux kernel. The issue affects systems using PowerPC pSeries hardware with memory hotplug capabilities (NVD).

The vulnerability has been fixed in various Linux kernel versions. The fix involves modifying the code to log failed lookups with a separate message and only dereferencing the cursor when it points to a valid entry. Updates are available for multiple Linux distributions including Ubuntu and Red Hat Enterprise Linux (Ubuntu Security, Red Hat Security).