CVE-2023-52871

Summary

In the Linux kernel, the following vulnerability has been resolved:

soc: qcom: llcc: Handle a second device without data corruption

Usually there is only one llcc device. But if there were a second, even a failed probe call would modify the global drv_data pointer. So check if drv_data is valid before overwriting it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < cc1a1dcb411fe224f48553cfdcdfe6e61395b69caffected
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < 5e5b85ea0f4bc484bfe4cc73ead51fa48d2366a0affected
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < 995ee1e84e8db7fa5dcdde7dfe0bd7bb6f9bbb8caffected
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < f0ef883cae309bc5e8cdfcdbc1b4822732ce20a8affected
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < 3565684309e54fa998ea27f37028d67cc3e1dff2affected
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < 1143bfb9b055897975aeaea254da148e19524493affected
LinuxLinuxa3134fb09e0bc5bee76e13bf863173b86f21cf87 < f1a1bc8775b26345aba2be278118999e7f661d3daffected
LinuxLinux4.19affected
LinuxLinux0 < 4.19unaffected
LinuxLinux5.4.261 <= 5.4.*unaffected
LinuxLinux5.10.201 <= 5.10.*unaffected
LinuxLinux5.15.139 <= 5.15.*unaffected
LinuxLinux6.1.63 <= 6.1.*unaffected
LinuxLinux6.5.12 <= 6.5.*unaffected
LinuxLinux6.6.2 <= 6.6.*unaffected
LinuxLinux6.7 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References