2 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-54325
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: qat - fix out-of-bounds read When preparing an AER-CTR request, the driver copies the key provided by the user into a data structure that is accessible ...
CVE-2023-54325
CVE-2023-54325 relates to the Linux kernel crypto/qat issue where preparing an AER-CTR request could trigger an out-of-bounds read when the device is QAT GEN4. The root cause is that the key provided by users is copied into a firmware-accessible structure with a rounded-up key length for GEN4, wh...