In the Linux kernel, the following vulnerability has been resolved: media: gspca: cpia1: shift-out-of-bounds in set_flicker Syzkaller reported the following issue: UBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27 shift exponent 245 is too large for 32-bit type 'int' When the value of the variable "sd->params.exposure.gain" exceeds the number of bits in an integer, a shift-out-of-bounds error is reported. It is triggered because the variable "currentexp" cannot be left-shifted by more than the number of bits in an integer. In order to avoid invalid range during left-shift, the conditional expression is added.

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Redhat
  • Enterprise Linux

No data.

Package CPE Advisory Released Date
Red Hat Enterprise Linux 8
kernel-rt-0:4.18.0-553.16.1.rt7.357.el8_10 cpe:/a:redhat:enterprise_linux:8::nfv RHSA-2024:5102 2024-08-08T00:00:00Z
kernel-0:4.18.0-553.16.1.el8_10 cpe:/o:redhat:enterprise_linux:8 RHSA-2024:5101 2024-08-08T00:00:00Z
References
Link Providers
https://git.kernel.org/stable/c/099be1822d1f095433f4b08af9cc9d6308ec1953 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/09cd8b561aa9796903710a1046957f2b112c8f26 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/2eee8edfff90e22980a6b22079d238c3c9d323bb cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/69bba62600bd91d6b7c1e8ca181faf8ac64f7060 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/8f83c85ee88225319c52680792320c02158c2a9b cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/93bddd6529f187f510eec759f37d0569243c9809 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/a647f27a7426d2fe1b40da7c8fa2b81354a51177 cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/c6b6b8692218da73b33b310d7c1df90f115bdd9a cve-icon cve-icon cve-icon
https://git.kernel.org/stable/c/e2d7149b913d14352c82624e723ce1c211ca06d3 cve-icon cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052148-CVE-2023-52764-fa3b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52764 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52764 cve-icon
History

Thu, 12 Sep 2024 08:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 11 Sep 2024 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 08 Aug 2024 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:8::nfv
cpe:/o:redhat:enterprise_linux:8
Vendors & Products Redhat
Redhat enterprise Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-21T15:30:49.032Z

Updated: 2024-09-11T17:33:31.755Z

Reserved: 2024-05-21T15:19:24.238Z

Link: CVE-2023-52764

cve-icon Vulnrichment

Updated: 2024-08-02T23:11:35.774Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-21T16:15:15.700

Modified: 2024-05-21T16:53:56.550

Link: CVE-2023-52764

cve-icon Redhat

Severity : Low

Publid Date: 2024-05-21T00:00:00Z

Links: CVE-2023-52764 - Bugzilla