Wind River Support Network

HomeDefectsLIN1022-3618
Fixed

LIN1022-3618 : Security Advisory - linux - CVE-2023-1380

Created: Mar 14, 2023    Updated: Jun 1, 2023
Resolved Date: May 10, 2023
Found In Version: 10.22.33.1
Fix Version: 10.22.33.9
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel

Description

A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leading to a denial of service.

https://nvd.nist.gov/vuln/detail/CVE-2023-1380

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube