CVE-2023-54186
- Source
- https://cve.org/CVERecord?id=CVE-2023-54186
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54186.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-54186
- Downstream
- Related
- Published
- 2025-12-30T12:08:55.882Z
- Modified
- 2026-03-11T07:50:36.246293Z
- Summary
- usb: typec: altmodes/displayport: fix pin_assignment_show
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usb: typec: altmodes/displayport: fix pinassignmentshow
This patch fixes negative indexing of buf array in pinassignmentshow when getcurrentpin_assignments returns 0 i.e. no compatible pin assignments are found.
BUG: KASAN: use-after-free in pinassignmentshow+0x26c/0x33c ... Call trace: dumpbacktrace+0x110/0x204 dumpstacklvl+0x84/0xbc printreport+0x358/0x974 kasan_report+0x9c/0xfc _dokernelfault+0xd4/0x2d4 dobadarea+0x48/0x168 dotagcheckfault+0x24/0x38 domemabort+0x6c/0x14c el1abort+0x44/0x68 el1h64synchandler+0x64/0xa4 el1h64sync+0x78/0x7c pinassignmentshow+0x26c/0x33c devattrshow+0x50/0xc0
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54186.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/08bd1be1c716fd50a7df48f82dcbc59a103082b5
- https://git.kernel.org/stable/c/0e61a7432fcd4bca06f05b7f1c7d7cb461880fe2
- https://git.kernel.org/stable/c/4f9c0a7c272626cb6716ffc7800e8c73260cdce6
- https://git.kernel.org/stable/c/54ee23e4ab263a495ace1eed43d3883212ece17f
- https://git.kernel.org/stable/c/d8f28269dd4bf9b55c3fb376ae31512730a96fce
- https://git.kernel.org/stable/c/fc0e18f95c88435bd8a1ceb540243cd7fbcd9781
- https://git.kernel.org/stable/c/ff466f77d0a56719979c4234abd412abd98eae8f
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54186.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-54186
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0e3bb7d6894d9b6e67d6382bb03a46a1dc989588Fixed0e61a7432fcd4bca06f05b7f1c7d7cb461880fe2Fixed4f9c0a7c272626cb6716ffc7800e8c73260cdce6Fixedff466f77d0a56719979c4234abd412abd98eae8fFixedfc0e18f95c88435bd8a1ceb540243cd7fbcd9781Fixed08bd1be1c716fd50a7df48f82dcbc59a103082b5Fixed54ee23e4ab263a495ace1eed43d3883212ece17fFixedd8f28269dd4bf9b55c3fb376ae31512730a96fce
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.19.0Fixed4.19.284
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.244
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.181
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.113
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.30
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.3.4