CVE-2023-52507 nfc: nci: assert requested protocol is valid

2024-03-0221:52:20

Linux

www.cve.org

linux kernel

vulnerability

nfc

nci

protocol

bitmask

shift-out-of-bounds

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.2%

JSON

In the Linux kernel, the following vulnerability has been resolved:

nfc: nci: assert requested protocol is valid

The protocol is used in a bit mask to determine if the protocol is
supported. Assert the provided protocol is less than the maximum
defined so it doesn’t potentially perform a shift-out-of-bounds and
provide a clearer error for undefined protocols vs unsupported ones.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/nfc/nci/core.c"
    ],
    "versions": [
      {
        "version": "6a2968aaf50c",
        "lessThan": "2c231a247a1d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "a686f8410168",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "95733ea130e3",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "a424807d860b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "25dd54b95abf",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "853dda54ba59",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "6584eba7688d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6a2968aaf50c",
        "lessThan": "354a6e707e29",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/nfc/nci/core.c"
    ],
    "versions": [
      {
        "version": "3.2",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.2",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.14.328",
        "lessThanOrEqual": "4.14.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.297",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.259",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.199",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.136",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.59",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.5.8",
        "lessThanOrEqual": "6.5.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]