Description

In the Linux kernel, the following vulnerability has been resolved: can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds If the "struct can_priv::echoo_skb" is accessed out of bounds, this would cause a kernel crash. Instead, issue a meaningful warning message and return with an error.

INFO

Published Date :

2024-05-21T15:32:10.616Z

Last Modified :

2025-05-04T07:45:00.765Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52878 vulnerability.

Vendors Products
Redhat
  • Enterprise Linux
  • Rhel Eus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52878.

URL Resource
https://git.kernel.org/stable/c/0d30931f1fa0fb893fb7d5dc32b6b7edfb775be4 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/53c468008a7c9ca3f5fc985951f35ec2acae85bc cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/6411959c10fe917288cbb1038886999148560057 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/826120c9ba68f2d0dbae58e99013929c883d1444 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/8ab67da060157362b2e0926692c659808784708f cve-icon cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052122-CVE-2023-52878-d433@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52878 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52878 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact