CVE-2023-52878
can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
21 may 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved:
can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds
If the "struct can_priv::echoo_skb" is accessed out of bounds, this
would cause a kernel crash. Instead, issue a meaningful warning
message and return with an error.
Productos afectados
Linux · LinuxReferencias
https://git.kernel.org/stable/c/0d30931f1fa0fb893fb7d5dc32b6b7edfb775be4https://git.kernel.org/stable/c/53c468008a7c9ca3f5fc985951f35ec2acae85bchttps://git.kernel.org/stable/c/6411959c10fe917288cbb1038886999148560057https://git.kernel.org/stable/c/826120c9ba68f2d0dbae58e99013929c883d1444https://git.kernel.org/stable/c/8ab67da060157362b2e0926692c659808784708f