CVE-2023-52818

EPSS 0.01%
Veröffentlicht 21.05.2024 16:15:19
Zuletzt bearbeitet 30.12.2024 20:08:57
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7

For pptable structs that use flexible array sizes, use flexible arrays.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version < 4.14.331

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.300

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.262

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.202

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.140

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.64

Linux ≫ Linux Kernel Version >= 6.2 < 6.5.13

Linux ≫ Linux Kernel Version >= 6.6 < 6.6.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.009

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

https://git.kernel.org/stable/c/6dffdddfca818c02a42b6caa1d9845995f0a1f94

Patch

https://git.kernel.org/stable/c/760efbca74a405dc439a013a5efaa9fadc95a8c3

Patch

https://git.kernel.org/stable/c/8af28ae3acb736ada4ce3457662fa446cc913bb4

Patch

https://git.kernel.org/stable/c/92a775e7c9707aed28782bafe636bf87675f5a97

Patch

https://git.kernel.org/stable/c/acdb6830de02cf2873aeaccdf2d9bca4aee50e47

Patch

https://git.kernel.org/stable/c/c847379a5d00078ad6fcb1c24230e72c5609342f

Patch