CVE-2023-52978
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-52978
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52978.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-52978
- Downstream
- Published
- 2025-03-27T16:43:18.185Z
- Modified
- 2025-11-30T01:18:37.124895Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- riscv: kprobe: Fixup kernel panic when probing an illegal position
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
riscv: kprobe: Fixup kernel panic when probing an illegal position
The kernel would panic when probed for an illegal position. eg:
(CONFIGRISCVISA_C=n)
echo 'p:hello kernelclone+0x16 a0=%a0' >> kprobeevents echo 1 > events/kprobes/hello/enable cat trace
Kernel panic - not syncing: stack-protector: Kernel stack is corrupted in: _dosysnewfstatat+0xb8/0xb8 CPU: 0 PID: 111 Comm: sh Not tainted 6.2.0-rc1-00027-g2d398fe49a4d #490 Hardware name: riscv-virtio,qemu (DT) Call Trace: [<ffffffff80007268>] dumpbacktrace+0x38/0x48 [<ffffffff80c5e83c>] showstack+0x50/0x68 [<ffffffff80c6da28>] dumpstacklvl+0x60/0x84 [<ffffffff80c6da6c>] dumpstack+0x20/0x30 [<ffffffff80c5ecf4>] panic+0x160/0x374 [<ffffffff80c6db94>] generichandlearchirq+0x0/0xa8 [<ffffffff802deeb0>] sysnewstat+0x0/0x30 [<ffffffff800158c0>] sysclone+0x20/0x30 [<ffffffff800039e8>] retfromsyscall+0x0/0x4 ---[ end Kernel panic - not syncing: stack-protector: Kernel stack is corrupted in: _dosysnewfstatat+0xb8/0xb8 ]---
That is because the kprobe's ebreak instruction broke the kernel's original code. The user should guarantee the correction of the probe position, but it couldn't make the kernel panic.
This patch adds archcheckkprobe in archpreparekprobe to prevent an illegal position (Such as the middle of an instruction).
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52978.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/04a73558209554da17f46490ec4faaaf1b2bab68
- https://git.kernel.org/stable/c/12316538b1d193064109ce1a28fc9bacd43950de
- https://git.kernel.org/stable/c/87f48c7ccc73afc78630530d9af51f458f58cab8
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52978.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-52978
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc22b0bcb1dd024cb9caad9230e3a387d8b061df5Fixed04a73558209554da17f46490ec4faaaf1b2bab68Fixed12316538b1d193064109ce1a28fc9bacd43950deFixed87f48c7ccc73afc78630530d9af51f458f58cab8