CVE-2023-52834

Updated: 2024-08-13 01:51:08.724395

Description:

In the Linux kernel, the following vulnerability has been resolved: atl1c: Work around the DMA RX overflow issue This is based on alx driver commit 881d0327db37 ("net: alx: Work around the DMA RX overflow issue"). The alx and atl1c drivers had RX overflow error which was why a custom allocator was created to avoid certain addresses. The simpler workaround then created for alx driver, but not for atl1c due to lack of tester. Instead of using a custom allocator, check the allocated skb address and use skb_reserve() to move away from problematic 0x...fc0 address. Tested on AR8131 on Acer 4540.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x NONE 0
CVSS Version 3.x MEDIUM 4.4

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 4.4 MEDIUM Ignored 2024-08-13 14:26:08
AlmaLinux 9.2 FIPS kernel 5.14.0 4.4 MEDIUM Ignored 2024-08-13 14:26:08
CentOS 6 ELS kernel 2.6.32 4.4 MEDIUM Ignored 2024-08-13 14:26:08
CentOS 7 ELS kernel 3.10.0 4.4 MEDIUM Ignored 2024-08-13 14:26:07
CentOS 8.4 ELS kernel 4.18.0 4.4 MEDIUM Ignored 2024-08-20 12:19:07
CentOS 8.5 ELS kernel 4.18.0 4.4 MEDIUM Ignored 2024-08-20 12:19:07
CentOS Stream 8 ELS kernel 4.18.0 4.4 MEDIUM Ignored 2024-08-20 12:19:07
CloudLinux 6 ELS kernel 2.6.32 4.4 MEDIUM Ignored 2024-08-13 14:26:08
CloudLinux 7 ELS kernel 3.10.0 4.4 MEDIUM Ignored 2024-08-13 14:26:07
Oracle Linux 6 ELS kernel 2.6.32 4.4 MEDIUM Ignored 2024-08-13 14:26:07