5.5

CVE-2023-52532

EPSS 0.01%
Veröffentlicht 02.03.2024 22:15:48
Zuletzt bearbeitet 16.01.2025 16:48:47
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

net: mana: Fix TX CQE error handling

For an unknown TX CQE error type (probably from a newer hardware),
still free the SKB, update the queue tail, etc., otherwise the
accounting will be wrong.

Also, TX errors can be triggered by injecting corrupted packets, so
replace the WARN_ONCE to ratelimited error logging.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.13 < 6.1.59

Linux ≫ Linux Kernel Version >= 6.2 < 6.5.7

Linux ≫ Linux Kernel Version6.6 Updaterc1

Linux ≫ Linux Kernel Version6.6 Updaterc2

Linux ≫ Linux Kernel Version6.6 Updaterc3

Linux ≫ Linux Kernel Version6.6 Updaterc4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.006

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

https://git.kernel.org/stable/c/a910e0f6304726da30a212feecec65cb97ff7a80

Patch

https://git.kernel.org/stable/c/b2b000069a4c307b09548dc2243f31f3ca0eac9c

Patch

https://git.kernel.org/stable/c/b67d7b1bfc46d05c1a58b172516454698e8d5004

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-52532

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-52532

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-52532

EUVD