5.5

CVE-2023-52887

net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new

In the Linux kernel, the following vulnerability has been resolved:

net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new

This patch enhances error handling in scenarios with RTS (Request to
Send) messages arriving closely. It replaces the less informative WARN_ON_ONCE
backtraces with a new error handling method. This provides clearer error
messages and allows for the early termination of problematic sessions.
Previously, sessions were only released at the end of j1939_xtp_rx_rts().

Potentially this could be reproduced with something like:
testj1939 -r vcan0:0x80 &
while true; do
	# send first RTS
	cansend vcan0 18EC8090#1014000303002301;
	# send second RTS
	cansend vcan0 18EC8090#1014000303002301;
	# send abort
	cansend vcan0 18EC8090#ff00000000002301;
done
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.4 < 5.4.279
LinuxLinux Kernel Version >= 5.5 < 5.10.221
LinuxLinux Kernel Version >= 5.11 < 5.15.162
LinuxLinux Kernel Version >= 5.16 < 6.1.97
LinuxLinux Kernel Version >= 6.2 < 6.6.37
LinuxLinux Kernel Version >= 6.7 < 6.9.8
LinuxLinux Kernel Version6.10 Updaterc1
LinuxLinux Kernel Version6.10 Updaterc2
LinuxLinux Kernel Version6.10 Updaterc3
LinuxLinux Kernel Version6.10 Updaterc4
LinuxLinux Kernel Version6.10 Updaterc5
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.13
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-617 Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

https://git.kernel.org/stable/c/0bc0a7416ea73f79f915c9a05ac0858dff65cfed
Patch
https://git.kernel.org/stable/c/1762ca80c2b72dd1b5821c5e347713ae696276ea
Patch
https://git.kernel.org/stable/c/177e33b655d35d72866b50aec84307119dc5f3d4
Patch
https://git.kernel.org/stable/c/26b18dd30e63d4fd777be429148e8e4ed66f60b2
Patch
https://git.kernel.org/stable/c/d3e2904f71ea0fe7eaff1d68a2b0363c888ea0fb
Patch
https://git.kernel.org/stable/c/ed581989d7ea9df6f8646beba2341e32cd49a1f9
Patch
https://git.kernel.org/stable/c/f6c839e717901dbd6b1c1ca807b6210222eb70f6
Patch
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html