CVE-2023-52893

commit 859748255b43 ("efi: pstore: Omit efivars caching EFI varstore access layer") added a new get_variable call with attr=NULL, which triggers panic in gsmi.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52893.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

74c5b31c6618f01079212332b2e5f6c42f2d6307

Fixed

ee5763ef829bd923033510de6d1df7c73f085e4b

Fixed

32313c11bdc8a02c577abaf865be3664ab30410a

Fixed

ffef77794fb5f1245c3249b86342bad2299accb5

Fixed

ae2a9dcc8caa60b1e14671294e5ec902ea5d1dfd

Fixed

eb0421d90f916dffe96b4c049ddf01c0c50620d2

Fixed

6646d769fdb0ce4318ef9afd127f8526d1ca8393

Fixed

a769b05eeed7accc4019a1ed9799dd72067f1ce8

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52893.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.0.0

Fixed

4.14.304

Type: ECOSYSTEM
Events: Introduced

4.15.0

Fixed

4.19.271

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.230

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.165

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.90

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.8

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52893.json"