7.1

CVE-2023-52525

wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet

In the Linux kernel, the following vulnerability has been resolved:

wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet

Only skip the code path trying to access the rfc1042 headers when the
buffer is too small, so the driver can still process packets without
rfc1042 headers.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.10.195 < 5.10.198
LinuxLinux Kernel Version >= 5.15.132 < 5.15.135
LinuxLinux Kernel Version >= 6.1.53 < 6.1.57
LinuxLinux Kernel Version >= 6.5.3 < 6.5.7
LinuxLinux Kernel Version4.14.326
LinuxLinux Kernel Version4.19.295
LinuxLinux Kernel Version5.4.257
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.144
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.1 1.8 5.2
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://git.kernel.org/stable/c/10a18c8bac7f60d32b7af22da03b66f350beee38
Patch
https://git.kernel.org/stable/c/16cc18b9080892d1a0200a38e36ae52e464bc555
Patch
https://git.kernel.org/stable/c/5afb996349cb6d1f14d6ba9aaa7aed3bd82534f6
Patch
https://git.kernel.org/stable/c/6b706286473db4fd54b5f869faa67f4a8cb18e99
Patch
https://git.kernel.org/stable/c/71b1d2b57f145c8469aa9346f0fd57bf59b2b89c
Patch
https://git.kernel.org/stable/c/aef7a0300047e7b4707ea0411dc9597cba108fc8
Patch
https://git.kernel.org/stable/c/b8e260654a29de872e7cb85387d8ab8974694e8e
Patch
https://git.kernel.org/stable/c/be2ff39b1504c5359f4a083c1cfcad21d666e216
Patch