CVE-2023-52703

EPSS 0.01%
Published 21.05.2024 16:15:12
Last modified 23.09.2025 18:54:00
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path

syzbot reported that act_len in kalmia_send_init_packet() is
uninitialized when passing it to the first usb_bulk_msg error path. Jiri
Pirko noted that it's pointless to pass it in the error path, and that
the value that would be printed in the second error path would be the
value of act_len from the first call to usb_bulk_msg.[1]

With this in mind, let's just not pass act_len to the usb_bulk_msg error
paths.

1: https://lore.kernel.org/lkml/Y9pY61y1nwTuzMOa@nanopsycho/

Affected products Warnungen 0 Metrics 3 CWE 1 References 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 3.0.1 < 4.14.306

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.273

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.232

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.169

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.95

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.13

Linux ≫ Linux Kernel Version3.0 Update-

Linux ≫ Linux Kernel Version3.0 Updaterc4

Linux ≫ Linux Kernel Version3.0 Updaterc5

Linux ≫ Linux Kernel Version3.0 Updaterc6

Linux ≫ Linux Kernel Version3.0 Updaterc7

Linux ≫ Linux Kernel Version6.2 Updaterc1

Linux ≫ Linux Kernel Version6.2 Updaterc2

Linux ≫ Linux Kernel Version6.2 Updaterc3

Linux ≫ Linux Kernel Version6.2 Updaterc4

Linux ≫ Linux Kernel Version6.2 Updaterc5

Linux ≫ Linux Kernel Version6.2 Updaterc6

Linux ≫ Linux Kernel Version6.2 Updaterc7

Linux ≫ Linux Kernel Version6.2 Updaterc8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.01%	0.003

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	3.3	1.8	1.4	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L