In the Linux kernel, the following vulnerability has been resolved:
crypto: s390/aes - Fix buffer overread in CTR mode
When processing the last block, the s390 ctr code will always read a whole block, even if there isn't a whole block of data left. Fix this by using the actual length left and copy it into a buffer first for processing.
{ "vanir_signatures": [ { "deprecated": false, "signature_type": "Function", "target": { "file": "arch/s390/crypto/paes_s390.c", "function": "ctr_paes_crypt" }, "signature_version": "v1", "digest": { "length": 1767.0, "function_hash": "222240027325836978537212092515699450388" }, "id": "CVE-2023-52669-38087d16", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a7f580cdb42ec3d53bbb7c4e4335a98423703285" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "arch/s390/crypto/paes_s390.c", "function": "ctr_paes_crypt" }, "signature_version": "v1", "digest": { "length": 1767.0, "function_hash": "222240027325836978537212092515699450388" }, "id": "CVE-2023-52669-395610c4", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d68ac38895e84446848b7647ab9458d54cacba3e" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "arch/s390/crypto/aes_s390.c", "function": "ctr_aes_crypt" }, "signature_version": "v1", "digest": { "length": 1130.0, "function_hash": "191140735434770990874612980040347082880" }, "id": "CVE-2023-52669-4adb2d33", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a7f580cdb42ec3d53bbb7c4e4335a98423703285" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "arch/s390/crypto/paes_s390.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "172838049620477757211572524088389850008", "118224058231133557822221336401585062683", "261084454889506928923883594676982489079", "78729920401788517765558854555757396816", "51808667769168145313155187477900846472", "235687018120139069319849906200144040358", "77163223994454754913559302389908166476" ], "threshold": 0.9 }, "id": "CVE-2023-52669-4c476131", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dbc9a791a70ea47be9f2acf251700fe254a2ab23" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "arch/s390/crypto/paes_s390.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "172838049620477757211572524088389850008", "118224058231133557822221336401585062683", "261084454889506928923883594676982489079", "78729920401788517765558854555757396816", "51808667769168145313155187477900846472", "235687018120139069319849906200144040358", "77163223994454754913559302389908166476" ], "threshold": 0.9 }, "id": "CVE-2023-52669-5abf5050", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a7f580cdb42ec3d53bbb7c4e4335a98423703285" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "arch/s390/crypto/aes_s390.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "67397497218840274973959646556210063786", "85239063041776293731310225512141669576", "7625873301655859755819727812471816621", "304514243393103148450643181820787880111" ], "threshold": 0.9 }, "id": "CVE-2023-52669-758b6737", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d68ac38895e84446848b7647ab9458d54cacba3e" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "arch/s390/crypto/paes_s390.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "172838049620477757211572524088389850008", "118224058231133557822221336401585062683", "261084454889506928923883594676982489079", "78729920401788517765558854555757396816", "51808667769168145313155187477900846472", "235687018120139069319849906200144040358", "77163223994454754913559302389908166476" ], "threshold": 0.9 }, "id": "CVE-2023-52669-941db298", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d68ac38895e84446848b7647ab9458d54cacba3e" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "arch/s390/crypto/paes_s390.c", "function": "ctr_paes_crypt" }, "signature_version": "v1", "digest": { "length": 1767.0, "function_hash": "222240027325836978537212092515699450388" }, "id": "CVE-2023-52669-a24f4b2e", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dbc9a791a70ea47be9f2acf251700fe254a2ab23" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "arch/s390/crypto/aes_s390.c", "function": "ctr_aes_crypt" }, "signature_version": "v1", "digest": { "length": 1130.0, "function_hash": "191140735434770990874612980040347082880" }, "id": "CVE-2023-52669-c6b19c69", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d68ac38895e84446848b7647ab9458d54cacba3e" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "arch/s390/crypto/aes_s390.c", "function": "ctr_aes_crypt" }, "signature_version": "v1", "digest": { "length": 1130.0, "function_hash": "191140735434770990874612980040347082880" }, "id": "CVE-2023-52669-e3affdf1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dbc9a791a70ea47be9f2acf251700fe254a2ab23" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "arch/s390/crypto/aes_s390.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "67397497218840274973959646556210063786", "85239063041776293731310225512141669576", "7625873301655859755819727812471816621", "304514243393103148450643181820787880111" ], "threshold": 0.9 }, "id": "CVE-2023-52669-e7409f60", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dbc9a791a70ea47be9f2acf251700fe254a2ab23" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "arch/s390/crypto/aes_s390.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "67397497218840274973959646556210063786", "85239063041776293731310225512141669576", "7625873301655859755819727812471816621", "304514243393103148450643181820787880111" ], "threshold": 0.9 }, "id": "CVE-2023-52669-f10be50e", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a7f580cdb42ec3d53bbb7c4e4335a98423703285" } ] }