CVE-2023-52507
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
nfc: nci: assert requested protocol is valid
The protocol is used in a bit mask to determine if the protocol is supported. Assert the provided protocol is less than the maximum defined so it doesn't potentially perform a shift-out-of-bounds and provide a clearer error for undefined protocols vs unsupported ones.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < 2c231a247a1d1628e41fa1eefd1a5307c41c5f53 | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < a686f84101680b8442181a8846fbd3c934653729 | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < 95733ea130e35ef9ec5949a5908dde3feaba92cb | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < a424807d860ba816aaafc3064b46b456361c0802 | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < 25dd54b95abfdca423b65a4ee620a774777d8213 | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < 853dda54ba59ea70d5580a298b7ede4707826848 | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < 6584eba7688dcf999542778b07f63828c21521da | affected |
| Linux | Linux | 6a2968aaf50c7a22fced77a5e24aa636281efca8 < 354a6e707e29cb0c007176ee5b8db8be7bd2dee0 | affected |
| Linux | Linux | 3.2 | affected |
| Linux | Linux | 0 < 3.2 | unaffected |
| Linux | Linux | 4.14.328 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.297 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.259 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.199 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.136 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.59 <= 6.1.* | unaffected |
| Linux | Linux | 6.5.8 <= 6.5.* | unaffected |
| Linux | Linux | 6.6 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53
- https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729
- https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb
- https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802
- https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213
- https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848
- https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da
- https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53
- https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729
- https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb
- https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802
- https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213
- https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848
- https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da
- https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.