Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2023-52827
HistoryMay 21, 2024 - 3:31 p.m.

CVE-2023-52827 wifi: ath12k: fix possible out-of-bound read in ath12k_htt_pull_ppdu_stats()

2024-05-2115:31:30
Linux
www.cve.org
1
linux kernel
ath12k
htt message

0.0004 Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: fix possible out-of-bound read in ath12k_htt_pull_ppdu_stats()

len is extracted from HTT message and could be an unexpected value in
case errors happen, so add validation before using to avoid possible
out-of-bound read in the following message iteration and parsing.

The same issue also applies to ppdu_info->ppdu_stats.common.num_users,
so validate it before using too.

These are found during code review.

Compile test only.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/wireless/ath/ath12k/dp_rx.c"
    ],
    "versions": [
      {
        "version": "1da177e4c3f4",
        "lessThan": "79527c21a3ce",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f4",
        "lessThan": "c9e44111da22",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f4",
        "lessThan": "1bc44a505a22",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/wireless/ath/ath12k/dp_rx.c"
    ],
    "versions": [
      {
        "version": "6.5.13",
        "lessThanOrEqual": "6.5.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.3",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.7",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

ubuntucve 1
nvd 1
cbl_mariner 1
cve 1
redhatcve 1
debiancve 1
ubuntucve
ubuntucve
CVE-2023-52827
2024-05-21 00:00:00
nvd
nvd
CVE-2023-52827
2024-05-21 16:15:20
cbl_mariner
cbl_mariner
CVE-2023-52827 affecting package kernel for versions less than 5.15.158.2-1
2024-06-12 22:23:00
cve
cve
CVE-2023-52827
2024-05-21 16:15:20
redhatcve
redhatcve
CVE-2023-52827
2024-05-23 11:12:36
debiancve
debiancve
CVE-2023-52827
2024-05-21 16:15:20

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVELIST:CVE-2023-52827
ubuntucve1nvd1cbl_mariner1cve1redhatcve1debiancve1