ГлавнаяУязвимости → CVE-2023-52507
7.1высокая

CVE-2023-52507

→ есть в БДУ: BDU:2024-07833 (на русском)
Описание (на английском; русское — в БДУ выше)

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested protocol is valid The protocol is used in a bit mask to determine if the protocol is supported. Assert the provided protocol is less than the maximum defined so it doesn't potentially perform a shift-out-of-bounds and provide a clearer error for undefined protocols vs unsupported ones.

Затрагиваемое ПО
Linux Linux kernel
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Источники
https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521dahttps://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cbhttps://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729