CVE-2023-52495
HIGHLinux Kernel 6.3-6.6.14, 6.7.0-6.7.2, 6.8 - Out-of-bounds Write in PMIC GLINK Altmode Port Sanity Check
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pmic_glink_altmode: fix port sanity check The PMIC GLINK altmode driver currently supports at most two ports. Fix the incomplete port sanity check on notifications to avoid accessing and corrupting memory beyond the port array if we ever get a notification for an unsupported port.
References (3)
Core 3
Core References
Mailing List, Patch
https://git.kernel.org/stable/c/532a5557da6892a6b2d5793052e1bce1f4c9e177
Mailing List, Patch
https://git.kernel.org/stable/c/d26edf4ee3672cc9828f2a3ffae34086a712574d
Mailing List, Patch
https://git.kernel.org/stable/c/c4fb7d2eac9ff9bfc35a2e4d40c7169a332416e0
Scores
CVSS v3
7.8
EPSS
0.0028
EPSS Percentile
19.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-787
Status
published
Products (9)
Linux/Linux
< 6.3
Linux/Linux
080b4e24852b1d5b66929f69344e6c3eeb963941 - 532a5557da6892a6b2d5793052e1bce1f4c9e177
Linux/Linux
080b4e24852b1d5b66929f69344e6c3eeb963941 - c4fb7d2eac9ff9bfc35a2e4d40c7169a332416e0
Linux/Linux
080b4e24852b1d5b66929f69344e6c3eeb963941 - d26edf4ee3672cc9828f2a3ffae34086a712574d
Linux/Linux
6.3
Linux/Linux
6.6.15 - 6.6.*
Linux/Linux
6.7.3 - 6.7.*
Linux/Linux
6.8
linux/linux_kernel
6.3 - 6.6.15
Published
Mar 11, 2024
Tracked Since
Feb 18, 2026