CVE-2023-52507
Vulnerability Summary
Timeline
Description
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested protocol is valid The protocol is used in a bit mask to determine if the protocol is supported. Assert the provided protocol is less than the maximum defined so it doesn't potentially perform a shift-out-of-bounds and provide a clearer error for undefined protocols vs unsupported ones.
CVSS Metrics
- v3.1•HIGH•Score: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
EPSS Trends
Current EPSS score: 0.01%• Percentile: 1%
Techniques & Countermeasures
- CWE-125•Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
Affected Systems
- linux•linux
≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < 2c231a247a1d1628e41fa1eefd1a5307c41c5f53 | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < a686f84101680b8442181a8846fbd3c934653729 | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < 95733ea130e35ef9ec5949a5908dde3feaba92cb | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < a424807d860ba816aaafc3064b46b456361c0802 | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < 25dd54b95abfdca423b65a4ee620a774777d8213 | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < 853dda54ba59ea70d5580a298b7ede4707826848 | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < 6584eba7688dcf999542778b07f63828c21521da | ≥ 6a2968aaf50c7a22fced77a5e24aa636281efca8, < 354a6e707e29cb0c007176ee5b8db8be7bd2dee0 | 3.2
- linux•linux_kernel
≥ 3.2, < 4.14.328 | ≥ 4.15, < 4.19.297 | ≥ 4.20, < 5.4.259 | ≥ 5.5, < 5.10.199 | ≥ 5.11, < 5.15.136 | ≥ 5.16, < 6.1.59 | ≥ 6.2, < 6.5.8 | 6.6:rc1 | 6.6:rc2 | 6.6:rc3 | 6.6:rc4 | 6.6:rc5
References (8)
- https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53
- https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729
- https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb
- https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802
- https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213
- https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848
- https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da
- https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0