CVE-2023-52882Resource Injection in Linux

CWE-99Resource Injection40 documents6 sources
Severity
5.5MEDIUMNVD
OSV7.8OSV6.5
EPSS
0.0%
top 98.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedMay 30
Latest updateSep 18

Description

In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change While PLL CPUX clock rate change when CPU is running from it works in vast majority of cases, now and then it causes instability. This leads to system crashes and other undefined behaviour. After a lot of testing (30+ hours) while also doing a lot of frequency switches, we can't observe any instability issues anymore when doing reparenting to stable clock like 24 MHz

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDlinux/linux_kernel4.175.4.276+6
Debianlinux/linux_kernel< 5.10.218-1+3
Ubuntulinux/linux_kernel< 5.4.0-192.212+2
CVEListV5linux/linux524353ea480b0094c16f2b5684ce7e0a23ab3685fe11826ffa200e1a7a826e745163cb2f47875f66+7
debiandebian/linux< linux 6.1.94-1 (bookworm)

Also affects: Debian Linux 10.0

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

19
OSV
linux-xilinx-zynqmp vulnerabilities2024-09-18
OSV
linux-raspi-5.4 vulnerabilities2024-08-22
OSV
linux-hwe-5.15 vulnerabilities2024-08-21
OSV
linux-bluefield vulnerabilities2024-08-21
OSV
linux-azure-5.4 vulnerabilities2024-08-19

📋Vendor Advisories

19
Ubuntu
Linux kernel vulnerabilities2024-09-18
Ubuntu
Linux kernel (Raspberry Pi) vulnerabilities2024-08-22
Ubuntu
Linux kernel (HWE) vulnerabilities2024-08-21
Ubuntu
Linux kernel (BlueField) vulnerabilities2024-08-21
Ubuntu
Linux kernel (Azure) vulnerabilities2024-08-19

💬Community

1
Bugzilla
CVE-2023-52882 kernel: clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change2024-06-02