CVE-2023-52687

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-52687
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52687.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-52687
Downstream
Related
Published
2024-05-17T14:24:48Z
Modified
2025-10-08T16:20:02.294362Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
crypto: safexcel - Add error handling for dma_map_sg() calls
Details

In the Linux kernel, the following vulnerability has been resolved:

crypto: safexcel - Add error handling for dmamapsg() calls

Macro dmamapsg() may return 0 on error. This patch enables checks in case of the macro failure and ensures unmapping of previously mapped buffers with dmaunmapsg().

Found by Linux Verification Center (linuxtesting.org) with static analysis tool SVACE.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1
Fixed
4c0ac81a172a69a7733290915276672787e904ec
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1
Fixed
8084b788c2fb1260f7d44c032d5124680b20d2b2
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1
Fixed
fc0b785802b856566df3ac943e38a072557001c4
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
49186a7d9e46ff132a0ed9b721ad6b6a58dba6c1
Fixed
87e02063d07708cac5bfe9fd3a6a242898758ac8

Affected versions

v6.*

v6.0
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.2
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1

Database specific

{
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "digest": {
                "length": 4573.0,
                "function_hash": "237681995645814133390564562348221158943"
            },
            "id": "CVE-2023-52687-1e0e2fe6",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8084b788c2fb1260f7d44c032d5124680b20d2b2",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c",
                "function": "safexcel_send_req"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "digest": {
                "length": 4573.0,
                "function_hash": "237681995645814133390564562348221158943"
            },
            "id": "CVE-2023-52687-931291ee",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4c0ac81a172a69a7733290915276672787e904ec",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c",
                "function": "safexcel_send_req"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "1986341372790956543574367231752643705",
                    "327478727556043600799263552357025537524",
                    "113142982605306582780924853736735301709",
                    "229714456849876167106571991017221075075",
                    "251625974362727604555821710807172676035",
                    "144679811473536584751681986670771980768",
                    "224538631134508286805305145314873432855",
                    "220875622060515969497919846239452161378",
                    "239666629066610862852971657461893519626",
                    "279719190891830915311345589917822515537",
                    "248240519976422100055114711558402486754",
                    "257442508787370174131983299327396649067",
                    "55288914184081912546083812959950097309",
                    "194863336387424225110202698377404022910",
                    "225159562500802800672327478790747885180",
                    "1711948326329050495885601428845212370",
                    "303287880451032470849529971414928778794"
                ]
            },
            "id": "CVE-2023-52687-935edeee",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fc0b785802b856566df3ac943e38a072557001c4",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "digest": {
                "length": 4573.0,
                "function_hash": "237681995645814133390564562348221158943"
            },
            "id": "CVE-2023-52687-aef4da35",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fc0b785802b856566df3ac943e38a072557001c4",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c",
                "function": "safexcel_send_req"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "1986341372790956543574367231752643705",
                    "327478727556043600799263552357025537524",
                    "113142982605306582780924853736735301709",
                    "229714456849876167106571991017221075075",
                    "251625974362727604555821710807172676035",
                    "144679811473536584751681986670771980768",
                    "224538631134508286805305145314873432855",
                    "220875622060515969497919846239452161378",
                    "239666629066610862852971657461893519626",
                    "279719190891830915311345589917822515537",
                    "248240519976422100055114711558402486754",
                    "257442508787370174131983299327396649067",
                    "55288914184081912546083812959950097309",
                    "194863336387424225110202698377404022910",
                    "225159562500802800672327478790747885180",
                    "1711948326329050495885601428845212370",
                    "303287880451032470849529971414928778794"
                ]
            },
            "id": "CVE-2023-52687-c79d482a",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87e02063d07708cac5bfe9fd3a6a242898758ac8",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "1986341372790956543574367231752643705",
                    "327478727556043600799263552357025537524",
                    "113142982605306582780924853736735301709",
                    "229714456849876167106571991017221075075",
                    "251625974362727604555821710807172676035",
                    "144679811473536584751681986670771980768",
                    "224538631134508286805305145314873432855",
                    "220875622060515969497919846239452161378",
                    "239666629066610862852971657461893519626",
                    "279719190891830915311345589917822515537",
                    "248240519976422100055114711558402486754",
                    "257442508787370174131983299327396649067",
                    "55288914184081912546083812959950097309",
                    "194863336387424225110202698377404022910",
                    "225159562500802800672327478790747885180",
                    "1711948326329050495885601428845212370",
                    "303287880451032470849529971414928778794"
                ]
            },
            "id": "CVE-2023-52687-cbda27cc",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8084b788c2fb1260f7d44c032d5124680b20d2b2",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "digest": {
                "length": 4573.0,
                "function_hash": "237681995645814133390564562348221158943"
            },
            "id": "CVE-2023-52687-f35fe4fe",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87e02063d07708cac5bfe9fd3a6a242898758ac8",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c",
                "function": "safexcel_send_req"
            }
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "1986341372790956543574367231752643705",
                    "327478727556043600799263552357025537524",
                    "113142982605306582780924853736735301709",
                    "229714456849876167106571991017221075075",
                    "251625974362727604555821710807172676035",
                    "144679811473536584751681986670771980768",
                    "224538631134508286805305145314873432855",
                    "220875622060515969497919846239452161378",
                    "239666629066610862852971657461893519626",
                    "279719190891830915311345589917822515537",
                    "248240519976422100055114711558402486754",
                    "257442508787370174131983299327396649067",
                    "55288914184081912546083812959950097309",
                    "194863336387424225110202698377404022910",
                    "225159562500802800672327478790747885180",
                    "1711948326329050495885601428845212370",
                    "303287880451032470849529971414928778794"
                ]
            },
            "id": "CVE-2023-52687-f4b1967a",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4c0ac81a172a69a7733290915276672787e904ec",
            "deprecated": false,
            "target": {
                "file": "drivers/crypto/inside-secure/safexcel_cipher.c"
            }
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.1.0
Fixed
6.1.75
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.14
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.2