CVE-2023-54102
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
A static code analysis tool flagged the possibility of buffer overflow when using copy_from_user() for a debugfs entry.
Currently, it is possible that copy_from_user() copies more bytes than what would fit in the mybuf char array. Add a min() restriction check between sizeof(mybuf) - 1 and nbytes passed from the userspace buffer to protect against buffer overflow.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6a828b0f6192b4930894925d1c1d0dc1f1d99e6e < 644a9d5e22761a41d5005a26996a643da96de962 | affected |
| Linux | Linux | 6a828b0f6192b4930894925d1c1d0dc1f1d99e6e < e0e7faee3a7dd6f51350cda64997116a247eb045 | affected |
| Linux | Linux | 6a828b0f6192b4930894925d1c1d0dc1f1d99e6e < f91037487036e2d2f18d3c2481be6b9a366bde7f | affected |
| Linux | Linux | 6a828b0f6192b4930894925d1c1d0dc1f1d99e6e < a9df88cb31dcbd72104ec5883f35cbc1fb587e47 | affected |
| Linux | Linux | 6a828b0f6192b4930894925d1c1d0dc1f1d99e6e < ad050f6cf681ebb850a9d4bc19474d3896476301 | affected |
| Linux | Linux | 6a828b0f6192b4930894925d1c1d0dc1f1d99e6e < c6087b82a9146826564a55c5ca0164cac40348f5 | affected |
| Linux | Linux | 5.1 | affected |
| Linux | Linux | 0 < 5.1 | unaffected |
| Linux | Linux | 5.4.244 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.181 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.113 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.30 <= 6.1.* | unaffected |
| Linux | Linux | 6.3.4 <= 6.3.* | unaffected |
| Linux | Linux | 6.4 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/644a9d5e22761a41d5005a26996a643da96de962
- https://git.kernel.org/stable/c/e0e7faee3a7dd6f51350cda64997116a247eb045
- https://git.kernel.org/stable/c/f91037487036e2d2f18d3c2481be6b9a366bde7f
- https://git.kernel.org/stable/c/a9df88cb31dcbd72104ec5883f35cbc1fb587e47
- https://git.kernel.org/stable/c/ad050f6cf681ebb850a9d4bc19474d3896476301
- https://git.kernel.org/stable/c/c6087b82a9146826564a55c5ca0164cac40348f5
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.