CVE-2023-52798

wifi: ath11k: fix dfs radar event locking

Severity Score

4.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath11k: fix dfs radar event locking

The ath11k active pdevs are protected by RCU but the DFS radar event
handling code calling ath11k_mac_get_ar_by_pdev_id() was not marked as a
read-side critical section.

Mark the code in question as an RCU read-side critical section to avoid
any potential use-after-free issues.

Compile tested only.

En el kernel de Linux, se resolvió la siguiente vulnerabilidad: wifi: ath11k: corrige el bloqueo de eventos de radar dfs. Los pdevs activos de ath11k están protegidos por RCU, pero el código de manejo de eventos de radar DFS que llama a ath11k_mac_get_ar_by_pdev_id() no se marcó como una sección crítica del lado de lectura . Marque el código en cuestión como una sección crítica del lado de lectura de RCU para evitar posibles problemas de use after free. Compilación probada únicamente.

*Credits: N/A

CVSS Scores

Red Hatv3.1 4.4

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-21 CVE Reserved
2024-05-21 CVE Published
2024-05-22 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-416: Use After Free

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/d5c65159f2895379e11ca13f62feabe93278985d	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/f882f51905517575c9f793a3dff567af90ef9a10	2023-11-28
https://git.kernel.org/stable/c/426e718ce9ba60013364a54233feee309356cb82	2023-11-28
https://git.kernel.org/stable/c/ca420ac4f9451f22347bae44b18ab47ba2c267ec	2023-11-28
https://git.kernel.org/stable/c/1fd878e1750190a612b5de2af357cca422ec0822	2023-11-28
https://git.kernel.org/stable/c/21ebb0aba580d347e12f01ce5f6e75044427b3d5	2023-11-28
https://git.kernel.org/stable/c/3b6c14833165f689cc5928574ebafe52bbce5f1e	2023-10-25

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2023-52798	2024-09-24
https://bugzilla.redhat.com/show_bug.cgi?id=2282648	2024-09-24

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.6 < 5.10.202 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.6 < 5.10.202"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.6 < 5.15.140 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.6 < 5.15.140"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.6 < 6.1.64 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.6 < 6.1.64"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.6 < 6.5.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.6 < 6.5.13"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.6 < 6.6.3 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.6 < 6.6.3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.6 < 6.7 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.6 < 6.7"		en		Affected