CVE-2023-52687
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-52687
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52687.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-52687
- Downstream
- Related
- Published
- 2024-05-17T14:24:48Z
- Modified
- 2025-10-21T14:50:23.036861Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- crypto: safexcel - Add error handling for dma_map_sg() calls
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
crypto: safexcel - Add error handling for dmamapsg() calls
Macro dmamapsg() may return 0 on error. This patch enables checks in case of the macro failure and ensures unmapping of previously mapped buffers with dmaunmapsg().
Found by Linux Verification Center (linuxtesting.org) with static analysis tool SVACE.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/4c0ac81a172a69a7733290915276672787e904ec
- https://git.kernel.org/stable/c/8084b788c2fb1260f7d44c032d5124680b20d2b2
- https://git.kernel.org/stable/c/87e02063d07708cac5bfe9fd3a6a242898758ac8
- https://git.kernel.org/stable/c/fc0b785802b856566df3ac943e38a072557001c4
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1Fixed4c0ac81a172a69a7733290915276672787e904ec
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1Fixed8084b788c2fb1260f7d44c032d5124680b20d2b2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1Fixedfc0b785802b856566df3ac943e38a072557001c4
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1Fixed87e02063d07708cac5bfe9fd3a6a242898758ac8
Affected versions
v6.*
v6.0
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.2
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
Database specific
vanir_signatures
[
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8084b788c2fb1260f7d44c032d5124680b20d2b2",
"digest": {
"function_hash": "237681995645814133390564562348221158943",
"length": 4573.0
},
"target": {
"function": "safexcel_send_req",
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-1e0e2fe6",
"deprecated": false,
"signature_type": "Function"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4c0ac81a172a69a7733290915276672787e904ec",
"digest": {
"function_hash": "237681995645814133390564562348221158943",
"length": 4573.0
},
"target": {
"function": "safexcel_send_req",
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-931291ee",
"deprecated": false,
"signature_type": "Function"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fc0b785802b856566df3ac943e38a072557001c4",
"digest": {
"line_hashes": [
"1986341372790956543574367231752643705",
"327478727556043600799263552357025537524",
"113142982605306582780924853736735301709",
"229714456849876167106571991017221075075",
"251625974362727604555821710807172676035",
"144679811473536584751681986670771980768",
"224538631134508286805305145314873432855",
"220875622060515969497919846239452161378",
"239666629066610862852971657461893519626",
"279719190891830915311345589917822515537",
"248240519976422100055114711558402486754",
"257442508787370174131983299327396649067",
"55288914184081912546083812959950097309",
"194863336387424225110202698377404022910",
"225159562500802800672327478790747885180",
"1711948326329050495885601428845212370",
"303287880451032470849529971414928778794"
],
"threshold": 0.9
},
"target": {
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-935edeee",
"deprecated": false,
"signature_type": "Line"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fc0b785802b856566df3ac943e38a072557001c4",
"digest": {
"function_hash": "237681995645814133390564562348221158943",
"length": 4573.0
},
"target": {
"function": "safexcel_send_req",
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-aef4da35",
"deprecated": false,
"signature_type": "Function"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87e02063d07708cac5bfe9fd3a6a242898758ac8",
"digest": {
"line_hashes": [
"1986341372790956543574367231752643705",
"327478727556043600799263552357025537524",
"113142982605306582780924853736735301709",
"229714456849876167106571991017221075075",
"251625974362727604555821710807172676035",
"144679811473536584751681986670771980768",
"224538631134508286805305145314873432855",
"220875622060515969497919846239452161378",
"239666629066610862852971657461893519626",
"279719190891830915311345589917822515537",
"248240519976422100055114711558402486754",
"257442508787370174131983299327396649067",
"55288914184081912546083812959950097309",
"194863336387424225110202698377404022910",
"225159562500802800672327478790747885180",
"1711948326329050495885601428845212370",
"303287880451032470849529971414928778794"
],
"threshold": 0.9
},
"target": {
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-c79d482a",
"deprecated": false,
"signature_type": "Line"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8084b788c2fb1260f7d44c032d5124680b20d2b2",
"digest": {
"line_hashes": [
"1986341372790956543574367231752643705",
"327478727556043600799263552357025537524",
"113142982605306582780924853736735301709",
"229714456849876167106571991017221075075",
"251625974362727604555821710807172676035",
"144679811473536584751681986670771980768",
"224538631134508286805305145314873432855",
"220875622060515969497919846239452161378",
"239666629066610862852971657461893519626",
"279719190891830915311345589917822515537",
"248240519976422100055114711558402486754",
"257442508787370174131983299327396649067",
"55288914184081912546083812959950097309",
"194863336387424225110202698377404022910",
"225159562500802800672327478790747885180",
"1711948326329050495885601428845212370",
"303287880451032470849529971414928778794"
],
"threshold": 0.9
},
"target": {
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-cbda27cc",
"deprecated": false,
"signature_type": "Line"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87e02063d07708cac5bfe9fd3a6a242898758ac8",
"digest": {
"function_hash": "237681995645814133390564562348221158943",
"length": 4573.0
},
"target": {
"function": "safexcel_send_req",
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-f35fe4fe",
"deprecated": false,
"signature_type": "Function"
},
{
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4c0ac81a172a69a7733290915276672787e904ec",
"digest": {
"line_hashes": [
"1986341372790956543574367231752643705",
"327478727556043600799263552357025537524",
"113142982605306582780924853736735301709",
"229714456849876167106571991017221075075",
"251625974362727604555821710807172676035",
"144679811473536584751681986670771980768",
"224538631134508286805305145314873432855",
"220875622060515969497919846239452161378",
"239666629066610862852971657461893519626",
"279719190891830915311345589917822515537",
"248240519976422100055114711558402486754",
"257442508787370174131983299327396649067",
"55288914184081912546083812959950097309",
"194863336387424225110202698377404022910",
"225159562500802800672327478790747885180",
"1711948326329050495885601428845212370",
"303287880451032470849529971414928778794"
],
"threshold": 0.9
},
"target": {
"file": "drivers/crypto/inside-secure/safexcel_cipher.c"
},
"id": "CVE-2023-52687-f4b1967a",
"deprecated": false,
"signature_type": "Line"
}
]