CVE-2023-52868

Updated: 2025-09-28 04:02:11.184221

Description:

In the Linux kernel, the following vulnerability has been resolved: thermal: core: prevent potential string overflow The dev->id value comes from ida_alloc() so it's a number between zero and INT_MAX. If it's too high then these sprintf()s will overflow.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0.0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Released CLSA-2025:1759866837 2025-10-08 04:11:57
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Released CLSA-2025:1761139764 2025-11-11 03:23:32
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Released 2025-11-05 04:52:31
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2025:1763731262 2025-11-21 21:52:26
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2025:1763734783 2025-11-21 21:52:27
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Released CLSA-2025:1761074747 2025-10-22 09:42:54
Oracle Linux 7 ELS kernel 3.10.0 7.8 HIGH Released CLSA-2025:1762244592 2025-11-05 04:57:51
RHEL 7 ELS kernel 3.10.0 7.8 HIGH Released CLSA-2025:1762244848 2025-11-05 05:01:17
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.8 HIGH Released CLSA-2025:1760713752 2025-10-17 16:09:36
Ubuntu 16.04 ELS linux 4.4.0 7.8 HIGH Released CLSA-2025:1760983231 2025-10-20 21:14:13
Total: 11