CVE-2023-53229

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mac80211: fix invalid drv_sta_pre_rcu_remove calls for non-uploaded sta

Avoid potential data corruption issues caused by uninitialized driver private data structures.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < db8d32d6b25fdb75c387daee496b96209d477780affected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < 7e68d7c640d41d8a371b8f6c2d2682ea437cbe21affected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < a3593082e0dadf87f17ea4ca9fa0210caaa2aebfaffected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < 3fe20515449a80a177526d2ecd13b43f6ee41aebaffected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < 30c5a016a37a668c1c07442cf94de6e99ea7417aaffected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < 022c8320d9eb7394538bd716fa1a07a5ed92621baffected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < 73752a39e2a6e38eee3ba90ece2ded598ea88006affected
LinuxLinux6a9d1b91f34df1935bc0ad98114801a44db0f98c < 12b220a6171faf10638ab683a975cadcf1a352d6affected
LinuxLinux3.14affected
LinuxLinux0 < 3.14unaffected
LinuxLinux4.14.313 <= 4.14.*unaffected
LinuxLinux4.19.281 <= 4.19.*unaffected
LinuxLinux5.4.241 <= 5.4.*unaffected
LinuxLinux5.10.178 <= 5.10.*unaffected
LinuxLinux5.15.107 <= 5.15.*unaffected
LinuxLinux6.1.24 <= 6.1.*unaffected
LinuxLinux6.2.11 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References