CVE-2023-52853
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
hid: cp2112: Fix duplicate workqueue initialization
Previously the cp2112 driver called INIT_DELAYED_WORK within cp2112_gpio_irq_startup, resulting in duplicate initilizations of the workqueue on subsequent IRQ startups following an initial request. This resulted in a warning in set_work_data in workqueue.c, as well as a rare NULL dereference within process_one_work in workqueue.c.
Initialize the workqueue within _probe instead.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < df0daac2709473531d6a3472997cc65301ac06d6 | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < 727203e6e7e7020e1246fc1628cbdb8d90177819 | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < 3d959406c8fff2334d83d0c352d54fd6f5b2e7cd | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < 012d0c66f9392a99232ac28217229f32dd3a70cf | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < bafb12b629b7c3ad59812dd1ac1b0618062e0e38 | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < fb5718bc67337dde1528661f419ffcf275757592 | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < eb1121fac7986b30915ba20c5a04cc01fdcf160c | affected |
| Linux | Linux | 13de9cca514ed63604263cad87ca8cb36e9b6489 < e3c2d2d144c082dd71596953193adf9891491f42 | affected |
| Linux | Linux | 4.10 | affected |
| Linux | Linux | 0 < 4.10 | unaffected |
| Linux | Linux | 4.19.299 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.261 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.201 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.139 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.63 <= 6.1.* | unaffected |
| Linux | Linux | 6.5.12 <= 6.5.* | unaffected |
| Linux | Linux | 6.6.2 <= 6.6.* | unaffected |
| Linux | Linux | 6.7 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/df0daac2709473531d6a3472997cc65301ac06d6
- https://git.kernel.org/stable/c/727203e6e7e7020e1246fc1628cbdb8d90177819
- https://git.kernel.org/stable/c/3d959406c8fff2334d83d0c352d54fd6f5b2e7cd
- https://git.kernel.org/stable/c/012d0c66f9392a99232ac28217229f32dd3a70cf
- https://git.kernel.org/stable/c/bafb12b629b7c3ad59812dd1ac1b0618062e0e38
- https://git.kernel.org/stable/c/fb5718bc67337dde1528661f419ffcf275757592
- https://git.kernel.org/stable/c/eb1121fac7986b30915ba20c5a04cc01fdcf160c
- https://git.kernel.org/stable/c/e3c2d2d144c082dd71596953193adf9891491f42
References
- https://git.kernel.org/stable/c/df0daac2709473531d6a3472997cc65301ac06d6
- https://git.kernel.org/stable/c/727203e6e7e7020e1246fc1628cbdb8d90177819
- https://git.kernel.org/stable/c/3d959406c8fff2334d83d0c352d54fd6f5b2e7cd
- https://git.kernel.org/stable/c/012d0c66f9392a99232ac28217229f32dd3a70cf
- https://git.kernel.org/stable/c/bafb12b629b7c3ad59812dd1ac1b0618062e0e38
- https://git.kernel.org/stable/c/fb5718bc67337dde1528661f419ffcf275757592
- https://git.kernel.org/stable/c/eb1121fac7986b30915ba20c5a04cc01fdcf160c
- https://git.kernel.org/stable/c/e3c2d2d144c082dd71596953193adf9891491f42
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.