CVE-2023-52450

Get logical socket id instead of physical id in discoverupitopology() to avoid out-of-bound access on 'upi = &type->topology[nid][idx];' line that leads to NULL pointer dereference in upifilltopology()

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

f680b6e6062ef3c944ffc966d685f067958fca33

Fixed

bf1bf09e6b599758851457f3999779622a48d015

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

f680b6e6062ef3c944ffc966d685f067958fca33

Fixed

3d6f4a78b104c65e4256c3776c9949f49a1b459e

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

f680b6e6062ef3c944ffc966d685f067958fca33

Fixed

1692cf434ba13ee212495b5af795b6a07e986ce4

Affected versions

v6.*

v6.1

v6.1-rc3

v6.1-rc4

v6.1-rc5

v6.1-rc6

v6.1-rc7

v6.1-rc8

v6.2

v6.2-rc1

v6.2-rc2

v6.2-rc3

v6.2-rc4

v6.2-rc5

v6.2-rc6

v6.2-rc7

v6.2-rc8

v6.3

v6.3-rc1

v6.3-rc2

v6.3-rc3

v6.3-rc4

v6.3-rc5

v6.3-rc6

v6.3-rc7

v6.4

v6.4-rc1

v6.4-rc2

v6.4-rc3

v6.4-rc4

v6.4-rc5

v6.4-rc6

v6.4-rc7

v6.5

v6.5-rc1

v6.5-rc2

v6.5-rc3

v6.5-rc4

v6.5-rc5

v6.5-rc6

v6.5-rc7

v6.6

v6.6-rc1

v6.6-rc2

v6.6-rc3

v6.6-rc4

v6.6-rc5

v6.6-rc6

v6.6-rc7

v6.6.1

v6.6.10

v6.6.11

v6.6.12

v6.6.13

v6.6.2

v6.6.3

v6.6.4

v6.6.5

v6.6.6

v6.6.7

v6.6.8

v6.6.9

v6.7

v6.7-rc1

v6.7-rc2

v6.7-rc3

v6.7-rc4

v6.7-rc5

v6.7-rc6

v6.7-rc7

v6.7-rc8

v6.7.1

Database specific

{
    "vanir_signatures": [
        {
            "id": "CVE-2023-52450-107528b7",
            "signature_type": "Function",
            "target": {
                "file": "arch/x86/events/intel/uncore_snbep.c",
                "function": "discover_upi_topology"
            },
            "signature_version": "v1",
            "digest": {
                "length": 881.0,
                "function_hash": "190661642937262311981910557134240223952"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bf1bf09e6b599758851457f3999779622a48d015"
        },
        {
            "id": "CVE-2023-52450-35cc6d5f",
            "signature_type": "Line",
            "target": {
                "file": "arch/x86/events/intel/uncore_snbep.c"
            },
            "signature_version": "v1",
            "digest": {
                "line_hashes": [
                    "126517344538931046253499099444647577074",
                    "321694955872541979978590146007011130758",
                    "235799952801942504386960972645510210854",
                    "131646046077355484426446657467352295353",
                    "73484488284156177011333302811809481381",
                    "316935400857129509382769693565444305422",
                    "269527656933255512952387117599353018244",
                    "309696406312605702807125836411107307757",
                    "271694716416809909088972018572558162020",
                    "281259382400783875927852366432194611817",
                    "291896213835150478023167614899355857899",
                    "81349835723810761116707704602341327634",
                    "108587633537507210242609878158511307392",
                    "244411579145064416438799377980138889895"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3d6f4a78b104c65e4256c3776c9949f49a1b459e"
        },
        {
            "id": "CVE-2023-52450-5ffbde0c",
            "signature_type": "Line",
            "target": {
                "file": "arch/x86/events/intel/uncore_snbep.c"
            },
            "signature_version": "v1",
            "digest": {
                "line_hashes": [
                    "126517344538931046253499099444647577074",
                    "321694955872541979978590146007011130758",
                    "235799952801942504386960972645510210854",
                    "131646046077355484426446657467352295353",
                    "73484488284156177011333302811809481381",
                    "316935400857129509382769693565444305422",
                    "269527656933255512952387117599353018244",
                    "309696406312605702807125836411107307757",
                    "271694716416809909088972018572558162020",
                    "281259382400783875927852366432194611817",
                    "291896213835150478023167614899355857899",
                    "81349835723810761116707704602341327634",
                    "108587633537507210242609878158511307392",
                    "244411579145064416438799377980138889895"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1692cf434ba13ee212495b5af795b6a07e986ce4"
        },
        {
            "id": "CVE-2023-52450-9451e0ee",
            "signature_type": "Function",
            "target": {
                "file": "arch/x86/events/intel/uncore_snbep.c",
                "function": "discover_upi_topology"
            },
            "signature_version": "v1",
            "digest": {
                "length": 881.0,
                "function_hash": "190661642937262311981910557134240223952"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1692cf434ba13ee212495b5af795b6a07e986ce4"
        },
        {
            "id": "CVE-2023-52450-99324215",
            "signature_type": "Line",
            "target": {
                "file": "arch/x86/events/intel/uncore_snbep.c"
            },
            "signature_version": "v1",
            "digest": {
                "line_hashes": [
                    "126517344538931046253499099444647577074",
                    "321694955872541979978590146007011130758",
                    "235799952801942504386960972645510210854",
                    "131646046077355484426446657467352295353",
                    "73484488284156177011333302811809481381",
                    "316935400857129509382769693565444305422",
                    "269527656933255512952387117599353018244",
                    "309696406312605702807125836411107307757",
                    "271694716416809909088972018572558162020",
                    "281259382400783875927852366432194611817",
                    "291896213835150478023167614899355857899",
                    "81349835723810761116707704602341327634",
                    "108587633537507210242609878158511307392",
                    "244411579145064416438799377980138889895"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bf1bf09e6b599758851457f3999779622a48d015"
        },
        {
            "id": "CVE-2023-52450-e85114d0",
            "signature_type": "Function",
            "target": {
                "file": "arch/x86/events/intel/uncore_snbep.c",
                "function": "discover_upi_topology"
            },
            "signature_version": "v1",
            "digest": {
                "length": 881.0,
                "function_hash": "190661642937262311981910557134240223952"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3d6f4a78b104c65e4256c3776c9949f49a1b459e"
        }
    ]
}

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.14

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.7.2