We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)
Bugpilot (Bug tracking)

Ok

THREATINT CVE Home CVE Diag Help
PUBLISHED

CVE-2023-52567

serial: 8250_port: Check IRQ data before use

Reserved:2024-03-02
Published:2024-03-02
Updated:2024-04-04

Description

In the Linux kernel, the following vulnerability has been resolved: serial: 8250_port: Check IRQ data before use In case the leaf driver wants to use IRQ polling (irq = 0) and IIR register shows that an interrupt happened in the 8250 hardware the IRQ data can be NULL. In such a case we need to skip the wake event as we came to this path from the timer interrupt and quite likely system is already awake. Without this fix we have got an Oops: serial8250: ttyS0 at I/O 0x3f8 (irq = 0, base_baud = 115200) is a 16550A ... BUG: kernel NULL pointer dereference, address: 0000000000000010 RIP: 0010:serial8250_handle_irq+0x7c/0x240 Call Trace: ? serial8250_handle_irq+0x7c/0x240 ? __pfx_serial8250_timeout+0x10/0x10

Product status

Default status
unaffected

edfe57aedff4 before ee5732caaffb
affected

0bd49a043c79 before c334650150c2
affected

572d48361aa0 before bf3c728e3692
affected

d5d628fea5f6 before e14afa4450cb
affected

424cf2929635 before 2b837f13a818
affected

727e92fe13e8 before e14f68a48fd4
affected

0ba9e3a13c6a before 3345cc5f02f1
affected

0ba9e3a13c6a before cce7fc8b2996
affected

Default status
affected

6.4
affected

Any version before 6.4
unaffected

4.14.327
unaffected

4.19.296
unaffected

5.4.258
unaffected

5.10.198
unaffected

5.15.134
unaffected

6.1.56
unaffected

6.5.6
unaffected

6.6
unaffected

References

https://git.kernel.org/stable/c/ee5732caaffba3a37e753fdb89b4958db9a61847

https://git.kernel.org/stable/c/c334650150c29234b0923476f51573ae1b2f252a

https://git.kernel.org/stable/c/bf3c728e3692cc6d998874f0f27d433117348742

https://git.kernel.org/stable/c/e14afa4450cb7e4cf93e993a765801203d41d014

https://git.kernel.org/stable/c/2b837f13a818f96304736453ac53b66a70aaa4f2

https://git.kernel.org/stable/c/e14f68a48fd445a083ac0750fafcb064df5f18f7

https://git.kernel.org/stable/c/3345cc5f02f1fb4c4dcb114706f2210d879ab933

https://git.kernel.org/stable/c/cce7fc8b29961b64fadb1ce398dc5ff32a79643b

cve.org CVE-2023-52567

nvd.nist.gov CVE-2023-52567

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-52567