CVE-2023-52502

net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()

Description

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() Sili Luo reported a race in nfc_llcp_sock_get(), leading to UAF. Getting a reference on the socket found in a lookup while holding a lock should happen before releasing the lock. nfc_llcp_sock_get_sn() has a similar problem. Finally nfc_llcp_recv_snl() needs to make sure the socket found by nfc_llcp_sock_from_sn() does not disappear.

Category

6.3
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.01%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/e863f5720a5680e50c4cecf12424d7cc31b3eb0a patch
https://git.kernel.org/stable/c/7adcf014bda16cdbf804af5c164d94d5d025db2d patch
https://git.kernel.org/stable/c/6ac22ecdaad2ecc662048f8c6b0ceb1ca0699ef9 patch
https://git.kernel.org/stable/c/d888d3f70b0de32b4f51534175f039ddab15eef8 patch
https://git.kernel.org/stable/c/e4f2611f07c87b3ddb57c4b9e8efcd1e330fc3dc patch
https://git.kernel.org/stable/c/d1af8a39cf839d93c8967fdd858f6bbdc3e4a15c patch
https://git.kernel.org/stable/c/31c07dffafce914c1d1543c135382a11ff058d93 patch

Frequently Asked Questions

What is the severity of CVE-2023-52502?
CVE-2023-52502 has been scored as a medium severity vulnerability.
How to fix CVE-2023-52502?
To fix CVE-2023-52502, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-52502 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2023-52502 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-52502?
CVE-2023-52502 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.