{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-52507", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-02-20T12:30:33.314Z", "datePublished": "2024-03-02T21:52:20.724Z", "dateUpdated": "2024-11-04T14:48:12.970Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T14:48:12.970Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: assert requested protocol is valid\n\nThe protocol is used in a bit mask to determine if the protocol is\nsupported. Assert the provided protocol is less than the maximum\ndefined so it doesn't potentially perform a shift-out-of-bounds and\nprovide a clearer error for undefined protocols vs unsupported ones."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/nfc/nci/core.c"], "versions": [{"version": "6a2968aaf50c", "lessThan": "2c231a247a1d", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "a686f8410168", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "95733ea130e3", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "a424807d860b", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "25dd54b95abf", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "853dda54ba59", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "6584eba7688d", "status": "affected", "versionType": "git"}, {"version": "6a2968aaf50c", "lessThan": "354a6e707e29", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/nfc/nci/core.c"], "versions": [{"version": "3.2", "status": "affected"}, {"version": "0", "lessThan": "3.2", "status": "unaffected", "versionType": "semver"}, {"version": "4.14.328", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.297", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.259", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.199", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.136", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.59", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.5.8", "lessThanOrEqual": "6.5.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53"}, {"url": "https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729"}, {"url": "https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb"}, {"url": "https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802"}, {"url": "https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213"}, {"url": "https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848"}, {"url": "https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da"}, {"url": "https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0"}], "title": "nfc: nci: assert requested protocol is valid", "x_generator": {"engine": "bippy-9e1c9544281a"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:20.507Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52507", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T15:56:50.242082Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T17:33:41.894Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:20.507Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52507", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T15:56:50.242082Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T12:42:18.213Z"}}], "cna": {"title": "nfc: nci: assert requested protocol is valid", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "6a2968aaf50c", "lessThan": "2c231a247a1d", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "a686f8410168", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "95733ea130e3", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "a424807d860b", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "25dd54b95abf", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "853dda54ba59", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "6584eba7688d", "versionType": "git"}, {"status": "affected", "version": "6a2968aaf50c", "lessThan": "354a6e707e29", "versionType": "git"}], "programFiles": ["net/nfc/nci/core.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "3.2"}, {"status": "unaffected", "version": "0", "lessThan": "3.2", "versionType": "semver"}, {"status": "unaffected", "version": "4.14.328", "versionType": "semver", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.297", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.259", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.199", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.15.136", "versionType": "semver", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "6.1.59", "versionType": "semver", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.5.8", "versionType": "semver", "lessThanOrEqual": "6.5.*"}, {"status": "unaffected", "version": "6.6", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["net/nfc/nci/core.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53"}, {"url": "https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729"}, {"url": "https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb"}, {"url": "https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802"}, {"url": "https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213"}, {"url": "https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848"}, {"url": "https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da"}, {"url": "https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0"}], "x_generator": {"engine": "bippy-9e1c9544281a"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: assert requested protocol is valid\n\nThe protocol is used in a bit mask to determine if the protocol is\nsupported. Assert the provided protocol is less than the maximum\ndefined so it doesn't potentially perform a shift-out-of-bounds and\nprovide a clearer error for undefined protocols vs unsupported ones."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T14:48:12.970Z"}}}, "cveMetadata": {"cveId": "CVE-2023-52507", "state": "PUBLISHED", "dateUpdated": "2024-11-04T14:48:12.970Z", "dateReserved": "2024-02-20T12:30:33.314Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-03-02T21:52:20.724Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: assert requested protocol is valid\n\nThe protocol is used in a bit mask to determine if the protocol is\nsupported. Assert the provided protocol is less than the maximum\ndefined so it doesn't potentially perform a shift-out-of-bounds and\nprovide a clearer error for undefined protocols vs unsupported ones."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: nfc: nci: afirmar que el protocolo solicitado es v\u00e1lido El protocolo se utiliza en una m\u00e1scara de bits para determinar si el protocolo es compatible. Afirme que el protocolo proporcionado es menor que el m\u00e1ximo definido para que no realice potencialmente un desplazamiento fuera de los l\u00edmites y proporcione un error m\u00e1s claro para los protocolos no definidos frente a los no compatibles."}], "id": "CVE-2023-52507", "lastModified": "2024-03-04T13:58:23.447", "metrics": {}, "published": "2024-03-02T22:15:47.443", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/25dd54b95abfdca423b65a4ee620a774777d8213"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/2c231a247a1d1628e41fa1eefd1a5307c41c5f53"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/354a6e707e29cb0c007176ee5b8db8be7bd2dee0"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/6584eba7688dcf999542778b07f63828c21521da"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/853dda54ba59ea70d5580a298b7ede4707826848"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/95733ea130e35ef9ec5949a5908dde3feaba92cb"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/a424807d860ba816aaafc3064b46b456361c0802"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/a686f84101680b8442181a8846fbd3c934653729"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}

{"bugzilla": {"description": "kernel: nfc: nci: assert requested protocol is valid", "id": "2267776", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267776"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.1", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "status": "draft"}, "cwe": "CWE-125", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nnfc: nci: assert requested protocol is valid\nThe protocol is used in a bit mask to determine if the protocol is\nsupported. Assert the provided protocol is less than the maximum\ndefined so it doesn't potentially perform a shift-out-of-bounds and\nprovide a clearer error for undefined protocols vs unsupported ones.", "An out-of-bounds vulnerability was found in the Linux kernel. This issue occurs due to an inadequate validation of the NFC protocol identifier, which uses bit masks to check protocol support. If the protocol value is too large, it can lead to out-of-bounds memory access due to bit shifts, causing memory corruption or other undefined behavior."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2023-52507", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-03-02T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-52507\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-52507\nhttps://lore.kernel.org/linux-cve-announce/2024030249-CVE-2023-52507-030c@gregkh/T/#u"], "statement": "Red Hat Enterprise Linux 8 and 9 are not affected by this vulnerability.", "threat_severity": "Moderate", "upstream_fix": "kernel 4.14.328, kernel 4.19.297, kernel 5.4.259, kernel 5.10.199, kernel 5.15.136, kernel 6.1.59, kernel 6.5.8, kernel 6.6"}