CVE-2023-53113

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: nl80211: fix NULL-ptr deref in offchan check

If, e.g. in AP mode, the link was already created by userspace but not activated yet, it has a chandef but the chandef isn't valid and has no channel. Check for this and ignore this link.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7b0a0e3c3a88260b6fcb017e49f198463aa62ed1 < 87e80ea4fbc9ce2f2005905fdbcd38baaa47463aaffected
LinuxLinux7b0a0e3c3a88260b6fcb017e49f198463aa62ed1 < 201a836c2385fdd2b9d0a8e7737bba5b26f1863aaffected
LinuxLinux7b0a0e3c3a88260b6fcb017e49f198463aa62ed1 < f624bb6fad23df3270580b4fcef415c6e7bf7705affected
LinuxLinux7a53ad13c09150076b7ddde96c2dfc5622c90b45affected
LinuxLinux5.19.2 < 5.20affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.21 <= 6.1.*unaffected
LinuxLinux6.2.8 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

References