CVE-2023-52749
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
spi: Fix null dereference on suspend
A race condition exists where a synchronous (noqueue) transfer can be active during a system suspend. This can cause a null pointer dereference exception to occur when the system resumes.
Example order of events leading to the exception:
- spi_sync() calls __spi_transfer_message_noqueue() which sets ctlr->cur_msg
- Spi transfer begins via spi_transfer_one_message()
- System is suspended interrupting the transfer context
- System is resumed
- spi_controller_resume() calls spi_start_queue() which resets cur_msg to NULL
- Spi transfer context resumes and spi_finalize_current_message() is called which dereferences cur_msg (which is now NULL)
Wait for synchronous transfers to complete before suspending by acquiring the bus mutex and setting/checking a suspend flag.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | ae7d2346dc89ae89a6e0aabe6037591a11e593c0 < 4ec4508db97502a12daee88c74782e8d35ced068 | affected |
| Linux | Linux | ae7d2346dc89ae89a6e0aabe6037591a11e593c0 < 96474ea47dc67b0704392d59192b233c8197db0e | affected |
| Linux | Linux | ae7d2346dc89ae89a6e0aabe6037591a11e593c0 < bef4a48f4ef798c4feddf045d49e53c8a97d5e37 | affected |
| Linux | Linux | 6.0 | affected |
| Linux | Linux | 0 < 6.0 | unaffected |
| Linux | Linux | 6.1.66 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.3 <= 6.6.* | unaffected |
| Linux | Linux | 6.7 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/4ec4508db97502a12daee88c74782e8d35ced068
- https://git.kernel.org/stable/c/96474ea47dc67b0704392d59192b233c8197db0e
- https://git.kernel.org/stable/c/bef4a48f4ef798c4feddf045d49e53c8a97d5e37
References
- https://git.kernel.org/stable/c/4ec4508db97502a12daee88c74782e8d35ced068
- https://git.kernel.org/stable/c/96474ea47dc67b0704392d59192b233c8197db0e
- https://git.kernel.org/stable/c/bef4a48f4ef798c4feddf045d49e53c8a97d5e37
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.