Lucene search

K
redhatcveRedhat.comRH:CVE-2023-52776
HistoryMay 23, 2024 - 11:09 a.m.

CVE-2023-52776

2024-05-2311:09:46
redhat.com
access.redhat.com
1
linux kernel
vulnerability
wifi driver
fix
rcu
use-after-free
temperature event

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.5%

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix dfs-radar and temperature event locking The ath12k active pdevs are protected by RCU but the DFS-radar and temperature event handling code calling ath12k_mac_get_ar_by_pdev_id() was not marked as a read-side critical section. Mark the code in question as RCU read-side critical sections to avoid any potential use-after-free issues. Note that the temperature event handler looks like a place holder currently but would still trigger an RCU lockdep splat. Compile tested only.

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.5%