5.5

CVE-2023-52532

EPSS 0.01%
Published 02.03.2024 22:15:48
Last modified 16.01.2025 16:48:47
Source 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Open
Login

In the Linux kernel, the following vulnerability has been resolved:

net: mana: Fix TX CQE error handling

For an unknown TX CQE error type (probably from a newer hardware),
still free the SKB, update the queue tail, etc., otherwise the
accounting will be wrong.

Also, TX errors can be triggered by injecting corrupted packets, so
replace the WARN_ONCE to ratelimited error logging.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.13 < 6.1.59

Linux ≫ Linux Kernel Version >= 6.2 < 6.5.7

Linux ≫ Linux Kernel Version6.6 Updaterc1

Linux ≫ Linux Kernel Version6.6 Updaterc2

Linux ≫ Linux Kernel Version6.6 Updaterc3

Linux ≫ Linux Kernel Version6.6 Updaterc4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.01%	0.006

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

https://git.kernel.org/stable/c/a910e0f6304726da30a212feecec65cb97ff7a80

Patch

https://git.kernel.org/stable/c/b2b000069a4c307b09548dc2243f31f3ca0eac9c

Patch

https://git.kernel.org/stable/c/b67d7b1bfc46d05c1a58b172516454698e8d5004

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-52532

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-52532

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-52532

EUVD