CVE-2023-52776
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-52776
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52776.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-52776
- Downstream
- Related
- Published
- 2024-05-21T15:30:56Z
- Modified
- 2025-10-15T04:24:47.496989Z
- Severity
-
- 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- Summary
- wifi: ath12k: fix dfs-radar and temperature event locking
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: ath12k: fix dfs-radar and temperature event locking
The ath12k active pdevs are protected by RCU but the DFS-radar and temperature event handling code calling ath12kmacgetarbypdevid() was not marked as a read-side critical section.
Mark the code in question as RCU read-side critical sections to avoid any potential use-after-free issues.
Note that the temperature event handler looks like a place holder currently but would still trigger an RCU lockdep splat.
Compile tested only.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd889913205cf7ebda905b1e62c5867ed4e39f6c2Fixed774de37c147fea81f2c2e4be5082304f4f71d535
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd889913205cf7ebda905b1e62c5867ed4e39f6c2Fixedd7a5f7f76568e48869916d769e28b9f3ca70c78e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd889913205cf7ebda905b1e62c5867ed4e39f6c2Fixed69bd216e049349886405b1c87a55dce3d35d1ba7
Affected versions
v6.*
v6.1
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.5.1
v6.5.10
v6.5.11
v6.5.12
v6.5.2
v6.5.3
v6.5.4
v6.5.5
v6.5.6
v6.5.7
v6.5.8
v6.5.9
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.2
Database specific
{
"vanir_signatures": [
{
"digest": {
"length": 519.0,
"function_hash": "66349337703585025376160407542239319770"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@774de37c147fea81f2c2e4be5082304f4f71d535",
"target": {
"file": "drivers/net/wireless/ath/ath12k/wmi.c",
"function": "ath12k_wmi_pdev_temperature_event"
},
"id": "CVE-2023-52776-0ece4087",
"signature_type": "Function"
},
{
"digest": {
"length": 1306.0,
"function_hash": "237674175290770346487709622352752440652"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d7a5f7f76568e48869916d769e28b9f3ca70c78e",
"target": {
"file": "drivers/net/wireless/ath/ath12k/wmi.c",
"function": "ath12k_wmi_pdev_dfs_radar_detected_event"
},
"id": "CVE-2023-52776-29e5ee61",
"signature_type": "Function"
},
{
"digest": {
"length": 519.0,
"function_hash": "66349337703585025376160407542239319770"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d7a5f7f76568e48869916d769e28b9f3ca70c78e",
"target": {
"file": "drivers/net/wireless/ath/ath12k/wmi.c",
"function": "ath12k_wmi_pdev_temperature_event"
},
"id": "CVE-2023-52776-42a375c2",
"signature_type": "Function"
},
{
"digest": {
"length": 1306.0,
"function_hash": "237674175290770346487709622352752440652"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@774de37c147fea81f2c2e4be5082304f4f71d535",
"target": {
"file": "drivers/net/wireless/ath/ath12k/wmi.c",
"function": "ath12k_wmi_pdev_dfs_radar_detected_event"
},
"id": "CVE-2023-52776-4c813e82",
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"3626440579913176280972121584783418442",
"162961715232332283228351238971813335324",
"141628880065575616173170303562870775773",
"331564981565784650644292879876971831448",
"252870869309040293906400817564233783891",
"157892592474693948655302639961017002062",
"92042057130272095780102752465710673192",
"67299147447093627613917430279188593510",
"22112541248019009866330126413662503165",
"253174259914687342761359625386708500910",
"191785968939727299868761308165745819629",
"110512524968498137299008503564180284100",
"140083257439962084689140936611150903035",
"67317696790081504111126594366355354001",
"70951995477167057687004491774119973738"
]
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@774de37c147fea81f2c2e4be5082304f4f71d535",
"target": {
"file": "drivers/net/wireless/ath/ath12k/wmi.c"
},
"id": "CVE-2023-52776-6dc8870d",
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"3626440579913176280972121584783418442",
"162961715232332283228351238971813335324",
"141628880065575616173170303562870775773",
"331564981565784650644292879876971831448",
"252870869309040293906400817564233783891",
"157892592474693948655302639961017002062",
"92042057130272095780102752465710673192",
"67299147447093627613917430279188593510",
"22112541248019009866330126413662503165",
"253174259914687342761359625386708500910",
"191785968939727299868761308165745819629",
"110512524968498137299008503564180284100",
"140083257439962084689140936611150903035",
"67317696790081504111126594366355354001",
"70951995477167057687004491774119973738"
]
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d7a5f7f76568e48869916d769e28b9f3ca70c78e",
"target": {
"file": "drivers/net/wireless/ath/ath12k/wmi.c"
},
"id": "CVE-2023-52776-cbe2d549",
"signature_type": "Line"
}
]
}