CVE-2023-52758

Опубликовано: 21 мая 2024

Источник: redhat

CVSS3: 4.4

Описание

[REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved: i2c: dev: copy userspace array safely i2c-dev.c utilizes memdup_user() to copy a userspace array. This is done without an overflow check. Use the new wrapper memdup_array_user() to copy the array more safely.

Отчет

This CVE has been rejected upstream:- https://lore.kernel.org/linux-cve-announce/2024052428-REJECTED-1813@gregkh/

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 8	kernel	Fix deferred
Red Hat Enterprise Linux 8	kernel-rt	Affected
Red Hat Enterprise Linux 9	kernel-rt	Affected
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2024:9315	12.11.2024
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2024:9315	12.11.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-121

https://bugzilla.redhat.com/show_bug.cgi?id=2282746kernel: i2c: dev: copy userspace array safely

4.4 Medium

CVSS3

Связанные уязвимости

CVE-2023-52758

nvd

около 1 года назад

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

GHSA-v9fv-p8rm-2gvr

github

около 1 года назад

In the Linux kernel, the following vulnerability has been resolved: i2c: dev: copy userspace array safely i2c-dev.c utilizes memdup_user() to copy a userspace array. This is done without an overflow check. Use the new wrapper memdup_array_user() to copy the array more safely.

ELSA-2024-9315

oracle-oval

7 месяцев назад

ELSA-2024-9315: kernel security update (MODERATE)

4.4 Medium

CVSS3