CVE-2023-52829

wifi: ath12k: fix possible out-of-bound write in ath12k_wmi_ext_hal_reg_caps()

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix possible out-of-bound write in ath12k_wmi_ext_hal_reg_caps() reg_cap.phy_id is extracted from WMI event and could be an unexpected value in case some errors happen. As a result out-of-bound write may occur to soc->hal_reg_cap. Fix it by validating reg_cap.phy_id before using it. This is found during code review. Compile tested only.

References

Link	Tags
https://git.kernel.org/stable/c/dfe13eaab043130f90dd3d57c7d88577c04adc97	patch
https://git.kernel.org/stable/c/4dd0547e8b45faf6f95373be5436b66cde326c0e	patch
https://git.kernel.org/stable/c/b302dce3d9edea5b93d1902a541684a967f3c63c	patch

Frequently Asked Questions

What is the severity of CVE-2023-52829?: CVE-2023-52829 has been scored as a medium severity vulnerability.
How to fix CVE-2023-52829?: To fix CVE-2023-52829, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-52829 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-52829 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-52829?: CVE-2023-52829 affects Linux Linux, Linux Linux.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Category

CWE-787 – Out-of-bounds Write

References

Frequently Asked Questions