Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-52868HistoryMay 21, 2024 - 4:15 p.m.
CVE-2023-52868
2024-05-2116:15:23
Debian Security Bug Tracker
security-tracker.debian.org
4
linux
kernel
vulnerability
fix
potential string overflow
thermal
core
sprintf
ida_alloc
int_max
dev->id
In the Linux kernel, the following vulnerability has been resolved: thermal: core: prevent potential string overflow The dev->id value comes from ida_alloc() so it’s a number between zero and INT_MAX. If it’s too high then these sprintf()s will overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.64-1 | linux_6.1.64-1_all.deb |
| Debian | 11 | all | linux | < 5.10.205-1 | linux_5.10.205-1_all.deb |
| Debian | 999 | all | linux | < 6.6.8-1 | linux_6.6.8-1_all.deb |
| Debian | 13 | all | linux | < 6.6.8-1 | linux_6.6.8-1_all.deb |
Related
cvelist
cvelist
CVE-2023-52868 thermal: core: prevent potential string overflow
2024-05-21 15:31:58
vulnrichment
vulnrichment
CVE-2023-52868 thermal: core: prevent potential string overflow
2024-05-21 15:31:58
ubuntucve
ubuntucve
CVE-2023-52868
2024-05-21 00:00:00
nvd
nvd
CVE-2023-52868
2024-05-21 16:15:23
redhatcve
redhatcve
CVE-2023-52868
2024-05-23 11:02:24
cve
cve
CVE-2023-52868
2024-05-21 16:15:23
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2189-1)
2024-06-26 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2008-1)
2024-06-13 00:00:00
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
13.2%
Related for DEBIANCVE:CVE-2023-52868