CVE-2023-52829

MEDIUM

Linux Kernel 6.3-6.5.12, 6.6.0-6.6.2, 6.7 - Out-of-bounds Write in ath12k_wmi_ext_hal_reg_caps

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix possible out-of-bound write in ath12k_wmi_ext_hal_reg_caps() reg_cap.phy_id is extracted from WMI event and could be an unexpected value in case some errors happen. As a result out-of-bound write may occur to soc->hal_reg_cap. Fix it by validating reg_cap.phy_id before using it. This is found during code review. Compile tested only.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/dfe13eaab043130f90dd3d57c7d88577c04adc97

Patch

https://git.kernel.org/stable/c/4dd0547e8b45faf6f95373be5436b66cde326c0e

Patch

https://git.kernel.org/stable/c/b302dce3d9edea5b93d1902a541684a967f3c63c

Scores

CVSS v3 6.2

EPSS 0.0025

EPSS Percentile 16.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-787

Status published

Products (9)

Linux/Linux < 6.3

Linux/Linux 6.3

Linux/Linux 6.5.13 - 6.5.*

Linux/Linux 6.6.3 - 6.6.*

Linux/Linux 6.7

Linux/Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2 - 4dd0547e8b45faf6f95373be5436b66cde326c0e

Linux/Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2 - b302dce3d9edea5b93d1902a541684a967f3c63c

Linux/Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2 - dfe13eaab043130f90dd3d57c7d88577c04adc97

linux/linux_kernel 6.3 - 6.5.13

Published May 21, 2024

Tracked Since Feb 18, 2026