Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentLinuxVULNRICHMENT:CVE-2023-52827
HistoryMay 21, 2024 - 3:31 p.m.

CVE-2023-52827 wifi: ath12k: fix possible out-of-bound read in ath12k_htt_pull_ppdu_stats()

2024-05-2115:31:30
Linux
github.com
6
linux kernel
vulnerability
wifi
ath12k
out-of-bound read fix

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: fix possible out-of-bound read in ath12k_htt_pull_ppdu_stats()

len is extracted from HTT message and could be an unexpected value in
case errors happen, so add validation before using to avoid possible
out-of-bound read in the following message iteration and parsing.

The same issue also applies to ppdu_info->ppdu_stats.common.num_users,
so validate it before using too.

These are found during code review.

Compile test only.

CNA Affected

[
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "1da177e4c3f4",
        "lessThan": "79527c21a3ce",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "1da177e4c3f4",
        "lessThan": "c9e44111da22",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "1da177e4c3f4",
        "lessThan": "1bc44a505a22",
        "versionType": "git"
      }
    ],
    "programFiles": [
      "drivers/net/wireless/ath/ath12k/dp_rx.c"
    ],
    "defaultStatus": "unaffected"
  },
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "unaffected",
        "version": "6.5.13",
        "versionType": "custom",
        "lessThanOrEqual": "6.5.*"
      },
      {
        "status": "unaffected",
        "version": "6.6.3",
        "versionType": "custom",
        "lessThanOrEqual": "6.6.*"
      },
      {
        "status": "unaffected",
        "version": "6.7",
        "versionType": "original_commit_for_fix",
        "lessThanOrEqual": "*"
      }
    ],
    "programFiles": [
      "drivers/net/wireless/ath/ath12k/dp_rx.c"
    ],
    "defaultStatus": "affected"
  }
]

Related

osv 4
cvelist 1
nvd 1
ubuntucve 1
cbl_mariner 1
debiancve 1
cve 1
redhatcve 1
nessus 3
osv
osv
CVE-2023-52827
2024-05-21 16:15:00
Security update for the Linux Kernel
2024-07-22 10:34:18
Security update for the Linux Kernel
2024-08-13 14:09:50
cvelist
cvelist
CVE-2023-52827 wifi: ath12k: fix possible out-of-bound read in ath12k_htt_pull_ppdu_stats()
2024-05-21 15:31:30
nvd
nvd
CVE-2023-52827
2024-05-21 16:15:20
ubuntucve
ubuntucve
CVE-2023-52827
2024-05-21 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-52827 affecting package kernel for versions less than 5.15.158.2-1
2024-06-12 22:23:00
debiancve
debiancve
CVE-2023-52827
2024-05-21 16:15:20
cve
cve
CVE-2023-52827
2024-05-21 16:15:20
redhatcve
redhatcve
CVE-2023-52827
2024-05-23 11:12:36
nessus
nessus
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2571-1)
2024-07-23 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2896-1)
2024-08-14 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2973-1)
2024-08-21 00:00:00

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2023-52827
osv4cvelist1nvd1ubuntucve1cbl_mariner1debiancve1cve1redhatcve1nessus3