CVE-2023-54057
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter
The 'acpiid' buffer in the parse_ivrs_acpihid function may overflow, because the string specifier in the format string sscanf() has no width limitation.
Found by InfoTeCS on behalf of Linux Verification Center (linuxtesting.org) with SVACE.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | ca3bf5d47cec8b7614bcb2e9132c40081d6d81db < 5e97dc748d13fad582136ba0c8cec215c7aeeb17 | affected |
| Linux | Linux | ca3bf5d47cec8b7614bcb2e9132c40081d6d81db < f2a5ec7f7b28f9b9cd5fac232ff51019a7f7b9e9 | affected |
| Linux | Linux | ca3bf5d47cec8b7614bcb2e9132c40081d6d81db < c513043e0afe6a8ba79d00af358655afabb576d2 | affected |
| Linux | Linux | ca3bf5d47cec8b7614bcb2e9132c40081d6d81db < 2ae19ac3ea82a5b87a81c10adbb497c9e58bdd60 | affected |
| Linux | Linux | ca3bf5d47cec8b7614bcb2e9132c40081d6d81db < 63cd11165e5e0ea2012254c764003eda1f9adb7d | affected |
| Linux | Linux | ca3bf5d47cec8b7614bcb2e9132c40081d6d81db < b6b26d86c61c441144c72f842f7469bb686e1211 | affected |
| Linux | Linux | 4.7 | affected |
| Linux | Linux | 0 < 4.7 | unaffected |
| Linux | Linux | 5.4.237 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.175 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.103 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.16 <= 6.1.* | unaffected |
| Linux | Linux | 6.2.3 <= 6.2.* | unaffected |
| Linux | Linux | 6.3 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/5e97dc748d13fad582136ba0c8cec215c7aeeb17
- https://git.kernel.org/stable/c/f2a5ec7f7b28f9b9cd5fac232ff51019a7f7b9e9
- https://git.kernel.org/stable/c/c513043e0afe6a8ba79d00af358655afabb576d2
- https://git.kernel.org/stable/c/2ae19ac3ea82a5b87a81c10adbb497c9e58bdd60
- https://git.kernel.org/stable/c/63cd11165e5e0ea2012254c764003eda1f9adb7d
- https://git.kernel.org/stable/c/b6b26d86c61c441144c72f842f7469bb686e1211
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.