CVE-2023-53575

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: mvm: fix potential array out of bounds access

Account for IWL_SEC_WEP_KEY_OFFSET when needed while verifying key_len size in iwl_mvm_sec_key_add().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5c75a208c2449c6ea24f07610cc052f6a352246c < 133b1cd4d98bb8b272335c8e6b0e0c399c0b2ffaaffected
LinuxLinux5c75a208c2449c6ea24f07610cc052f6a352246c < 637452360ecde9ac972d19416e9606529576b302affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.4.7 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References