CVE-2023-52525

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet

Only skip the code path trying to access the rfc1042 headers when the buffer is too small, so the driver can still process packets without rfc1042 headers.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf517c97fc129995de77dd06aa5a74f909ebf568f < 71b1d2b57f145c8469aa9346f0fd57bf59b2b89caffected
LinuxLinux8824aa4ab62c800f75d96f48e1883a5f56ec5869 < 16cc18b9080892d1a0200a38e36ae52e464bc555affected
LinuxLinux29eca8b7863d1d7de6c5b746b374e3487d14f154 < b8e260654a29de872e7cb85387d8ab8974694e8eaffected
LinuxLinux3fe3923d092e22d87d1ed03e2729db444b8c1331 < 10a18c8bac7f60d32b7af22da03b66f350beee38affected
LinuxLinux7c54b6fc39eb1aac51cf2945f8a25e2a47fdca02 < 5afb996349cb6d1f14d6ba9aaa7aed3bd82534f6affected
LinuxLinux3975e21d4d01efaf0296ded40d11c06589c49245 < 6b706286473db4fd54b5f869faa67f4a8cb18e99affected
LinuxLinux650d1bc02fba7b42f476d8b6643324abac5921ed < be2ff39b1504c5359f4a083c1cfcad21d666e216affected
LinuxLinux11958528161731c58e105b501ed60b83a91ea941 < aef7a0300047e7b4707ea0411dc9597cba108fc8affected
LinuxLinuxa7300e3800e9fd5405e88ce67709c1a97783b9c8affected
LinuxLinux6.4.16 < 6.5affected
LinuxLinux4.14.326 < 4.14.327affected
LinuxLinux4.19.295 < 4.19.296affected
LinuxLinux5.4.257 < 5.4.258affected
LinuxLinux5.10.195 < 5.10.198affected
LinuxLinux5.15.132 < 5.15.135affected
LinuxLinux6.1.53 < 6.1.57affected
LinuxLinux6.5.3 < 6.5.7affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References