CVE-2023-52524

Updated: 2025-01-13

CWE: CWE-667

Description:

In the Linux kernel, the following vulnerability has been resolved: net: nfc: llcp: Add lock when modifying device list The device list needs its associated lock held when modifying it, or the list could become corrupted, as syzbot discovered.

CVSS3: 7.8


Vendor State

OS Vendor version Errata
Ubuntu 14.04 HWE ESM 4.4.0-254.288~14.04.1 USN-6778-1
Ubuntu 20.04 5.4.0-171.189 USN-6625-1
Ubuntu 20.04 AWS 5.4.0-1118.128 USN-6625-1
Ubuntu 16.04 ESM 4.4.0-254.288 USN-6778-1
Ubuntu 16.04 HWE ESM 4.15.0-225.237~16.04.1 USN-6777-1
Ubuntu 16.04 AWS ESM 4.4.0-1169.184 USN-6778-1
Ubuntu 16.04 GCP ESM 4.15.0-1162.179~16.04.1 USN-6777-3
Ubuntu 16.04 AWS HWE ESM 4.15.0-1168.181~16.04.1 USN-6777-4
Ubuntu 16.04 Azure ESM 4.15.0-1177.192~16.04.1 USN-6777-2
Ubuntu 22.04 5.15.0-94.104 USN-6626-1
Ubuntu 22.04 AWS 5.15.0-1053.58 USN-6626-1
Ubuntu 22.04 Azure 5.15.0-1056.64 USN-6626-3

KernelCare State

OS Original kernel version State
Ubuntu 14.04 HWE ESM
Planned
Ubuntu 20.04
Planned
Ubuntu 20.04 AWS
Planned
Ubuntu 16.04 ESM
Planned
Ubuntu 16.04 HWE ESM
Planned
Ubuntu 16.04 AWS ESM
Planned
Ubuntu 16.04 GCP ESM
Planned
Ubuntu 16.04 AWS HWE ESM
Planned
Ubuntu 16.04 Azure ESM
Planned
Ubuntu 22.04
Planned
Ubuntu 22.04 AWS
Planned
Ubuntu 22.04 Azure
Planned