CVE-2023-5563

The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...

CVE-2023-5563

The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...

CVE-2023-5563

The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...

CVE-2023-5563

CVE-2023-5563 affects Zephyr RTOS, specifically the SJA1000 CAN controller driver backend. When built with CONFIG_CAN_AUTO_BUS_OFF_RECOVERY=y, the driver attempts to recover from a bus-off event by calling k_sleep() in IRQ context, which leads to a fatal exception. The linked documents confirm th...

kernel: can: m_can: m_can_{read_fifo,echo_tx_event}(): shift timestamp to full 32 bits

In the Linux kernel, the following vulnerability has been resolved: can: mcan: mcanreadfifo,echotxevent: shift timestamp to full 32 bits In commit 1be37d3b0414 "can: mcan: fix periph RX path: use rx-offload to ensure skbs are sent from softirq context" the RX path for peripheral devices was...