CVE-2023-52612 — Classic Buffer Overflow in Linux
Severity
7.8HIGHNVD
OSV8.1OSV7.5OSV6.5
EPSS
0.0%
top 98.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 18
Latest updateNov 25
Description
In the Linux kernel, the following vulnerability has been resolved:
crypto: scomp - fix req->dst buffer overflow
The req->dst buffer size should be checked before copying from the
scomp_scratch->dst to avoid req->dst buffer overflow problem.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages5 packages
▶CVEListV5linux/linux1ab53a77b772bf7369464a0e4fa6fd6499acf8f1 — 1142d65c5b881590962ad763f94505b6dd67d2fe+8
Also affects: Debian Linux 10.0
Patches
🔴Vulnerability Details
19OSV▶
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle vulnerabilities↗2024-11-19