CVE-2023-53721

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: Fix a NULL pointer dereference in ath12k_mac_op_hw_scan()

In ath12k_mac_op_hw_scan(), the return value of kzalloc() is directly used in memcpy(), which may lead to a NULL pointer dereference on failure of kzalloc().

Fix this bug by adding a check of arg.extraie.ptr.

Tested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0-03427-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1.15378.4

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd889913205cf7ebda905b1e62c5867ed4e39f6c2 < 5a263df398b581189fe632b4ab8440f3dd76c251affected
LinuxLinuxd889913205cf7ebda905b1e62c5867ed4e39f6c2 < 8ad314da54c6dd223a6b6cc85019160aa842f659affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.5.5 <= 6.5.*unaffected
LinuxLinux6.6 <= *unaffected

Weaknesses

References