Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2023-52769

HistoryMay 21, 2024 - 4:15 p.m.

CVE-2023-52769

2024-05-2116:15:16

CWE-416

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

ath12k

wifi

vulnerability

fix

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: fix htt mlo-offset event locking

The ath12k active pdevs are protected by RCU but the htt mlo-offset
event handling code calling ath12k_mac_get_ar_by_pdev_id() was not
marked as a read-side critical section.

Mark the code in question as an RCU read-side critical section to avoid
any potential use-after-free issues.

Compile tested only.

Affected configurations

NVD

Node

linuxlinux_kernelRange6.3–6.5.13

linuxlinux_kernelRange6.6–6.6.3

References

git.kernel.org/stable/c/6afc57ea315e0f660b1f870a681737bb7b71faef

git.kernel.org/stable/c/afd3425bd69610f318403084fe491e24a1357fb9

git.kernel.org/stable/c/d908ca431e20b0e4bfc5d911d1744910ed779bdb

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-52769