CVE-2023-52606

Some of the fp/vmx code in sstep.c assume a certain maximum size for the instructions being emulated. The size of those operations however is determined separately in analyse_instr().

Add a check to validate the assumption on the maximum size of the operations, so as to prevent any unintended kernel stack corruption.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52606.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

c22435a5f3d8f85ea162ae523a6ba60a58521ba5

Fixed

42084a428a139f1a429f597d44621e3a18f3e414

Fixed

0580f4403ad33f379eef865c2a6fe94de37febdf

Fixed

beee482cc4c9a6b1dcffb2e190b4fd8782258678

Fixed

de4f5ed63b8a199704d8cdcbf810309d7eb4b36b

Fixed

abd26515d4b767ba48241eea77b28ce0872aef3e

Fixed

28b8ba8eebf26f66d9f2df4ba550b6b3b136082c

Fixed

848e1d7fd710900397e1d0e7584680c1c04e3afd

Fixed

8f9abaa6d7de0a70fc68acaedce290c1f96e2e59

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52606.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.14.0

Fixed

4.19.307

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.269

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.210

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.149

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.77

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.16

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.7.4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52606.json"