CVE-2023-1380

Updated: 2025-11-10 00:37:19.001188

Description:

A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leading to a denial of service.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0.0
CVSS Version 3.x HIGH 7.1

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 7.1 HIGH Released CLSA-2024:1712570434 2024-04-08 10:43:45
CentOS 7 ELS kernel 3.10.0 7.1 HIGH Released CLSA-2024:1720468480 2024-07-23 17:32:13
CentOS 8.4 ELS kernel 4.18.0 7.1 HIGH Released CLSA-2023:1686585068 2023-06-13 09:05:58
CentOS 8.5 ELS kernel 4.18.0 7.1 HIGH Released CLSA-2023:1686651204 2023-06-13 09:05:58
RHEL 7 ELS kernel 3.10.0 7.1 HIGH Released CLSA-2025:1750353839 2025-06-20 04:44:39
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.1 HIGH Released CLSA-2023:1685972472 2023-06-05 11:04:29
Ubuntu 16.04 ELS linux 4.4.0 7.1 HIGH Released CLSA-2023:1688072342 2023-06-29 17:05:05
Ubuntu 18.04 ELS linux 4.15.0 7.1 HIGH Released 2023-08-31 03:18:35