CVE-2023-52495

Fix the incomplete port sanity check on notifications to avoid accessing and corrupting memory beyond the port array if we ever get a notification for an unsupported port.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

080b4e24852b1d5b66929f69344e6c3eeb963941

Fixed

532a5557da6892a6b2d5793052e1bce1f4c9e177

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

080b4e24852b1d5b66929f69344e6c3eeb963941

Fixed

d26edf4ee3672cc9828f2a3ffae34086a712574d

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

080b4e24852b1d5b66929f69344e6c3eeb963941

Fixed

c4fb7d2eac9ff9bfc35a2e4d40c7169a332416e0

Affected versions

v6.*

v6.2

v6.2-rc2

v6.2-rc3

v6.2-rc4

v6.2-rc5

v6.2-rc6

v6.2-rc7

v6.2-rc8

v6.3

v6.3-rc1

v6.3-rc2

v6.3-rc3

v6.3-rc4

v6.3-rc5

v6.3-rc6

v6.3-rc7

v6.4

v6.4-rc1

v6.4-rc2

v6.4-rc3

v6.4-rc4

v6.4-rc5

v6.4-rc6

v6.4-rc7

v6.5

v6.5-rc1

v6.5-rc2

v6.5-rc3

v6.5-rc4

v6.5-rc5

v6.5-rc6

v6.5-rc7

v6.6

v6.6-rc1

v6.6-rc2

v6.6-rc3

v6.6-rc4

v6.6-rc5

v6.6-rc6

v6.6-rc7

v6.6.1

v6.6.10

v6.6.11

v6.6.12

v6.6.13

v6.6.14

v6.6.2

v6.6.3

v6.6.4

v6.6.5

v6.6.6

v6.6.7

v6.6.8

v6.6.9

v6.7

v6.7-rc1

v6.7-rc2

v6.7-rc3

v6.7-rc4

v6.7-rc5

v6.7-rc6

v6.7-rc7

v6.7-rc8

v6.7.1

v6.7.2

Database specific

vanir_signatures

[
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@532a5557da6892a6b2d5793052e1bce1f4c9e177",
        "deprecated": false,
        "digest": {
            "function_hash": "76004737457702222036909120562390500632",
            "length": 894.0
        },
        "target": {
            "function": "pmic_glink_altmode_sc8280xp_notify",
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-10a66f8a",
        "signature_version": "v1",
        "signature_type": "Function"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c4fb7d2eac9ff9bfc35a2e4d40c7169a332416e0",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "28953392164792580223685307556907170872",
                "196724966310004248419714470325408592647",
                "130521442917969859209715644655732364322",
                "339537267053204900310287352781591404220",
                "288697265154874430032702414599529591357",
                "251662525260386848575260025689342772677",
                "243026739882825322409331018353996362010",
                "339537267053204900310287352781591404220"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-21189f33",
        "signature_version": "v1",
        "signature_type": "Line"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@532a5557da6892a6b2d5793052e1bce1f4c9e177",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "28953392164792580223685307556907170872",
                "196724966310004248419714470325408592647",
                "130521442917969859209715644655732364322",
                "339537267053204900310287352781591404220",
                "288697265154874430032702414599529591357",
                "251662525260386848575260025689342772677",
                "243026739882825322409331018353996362010",
                "339537267053204900310287352781591404220"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-63b1d5b0",
        "signature_version": "v1",
        "signature_type": "Line"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c4fb7d2eac9ff9bfc35a2e4d40c7169a332416e0",
        "deprecated": false,
        "digest": {
            "function_hash": "76004737457702222036909120562390500632",
            "length": 894.0
        },
        "target": {
            "function": "pmic_glink_altmode_sc8280xp_notify",
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-a81299b5",
        "signature_version": "v1",
        "signature_type": "Function"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d26edf4ee3672cc9828f2a3ffae34086a712574d",
        "deprecated": false,
        "digest": {
            "function_hash": "76004737457702222036909120562390500632",
            "length": 894.0
        },
        "target": {
            "function": "pmic_glink_altmode_sc8280xp_notify",
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-abb493dd",
        "signature_version": "v1",
        "signature_type": "Function"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d26edf4ee3672cc9828f2a3ffae34086a712574d",
        "deprecated": false,
        "digest": {
            "function_hash": "304592337687748247638201379177885774614",
            "length": 1010.0
        },
        "target": {
            "function": "pmic_glink_altmode_sc8180xp_notify",
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-c21e6344",
        "signature_version": "v1",
        "signature_type": "Function"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c4fb7d2eac9ff9bfc35a2e4d40c7169a332416e0",
        "deprecated": false,
        "digest": {
            "function_hash": "304592337687748247638201379177885774614",
            "length": 1010.0
        },
        "target": {
            "function": "pmic_glink_altmode_sc8180xp_notify",
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-c803218c",
        "signature_version": "v1",
        "signature_type": "Function"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d26edf4ee3672cc9828f2a3ffae34086a712574d",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "28953392164792580223685307556907170872",
                "196724966310004248419714470325408592647",
                "130521442917969859209715644655732364322",
                "339537267053204900310287352781591404220",
                "288697265154874430032702414599529591357",
                "251662525260386848575260025689342772677",
                "243026739882825322409331018353996362010",
                "339537267053204900310287352781591404220"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-e1cdf735",
        "signature_version": "v1",
        "signature_type": "Line"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@532a5557da6892a6b2d5793052e1bce1f4c9e177",
        "deprecated": false,
        "digest": {
            "function_hash": "304592337687748247638201379177885774614",
            "length": 1010.0
        },
        "target": {
            "function": "pmic_glink_altmode_sc8180xp_notify",
            "file": "drivers/soc/qcom/pmic_glink_altmode.c"
        },
        "id": "CVE-2023-52495-f1d8bd2c",
        "signature_version": "v1",
        "signature_type": "Function"
    }
]

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.3.0

Fixed

6.6.15

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.7.3