CVE-2023-52706 - Vulnerability Details - OpenCVE

ReportizFlow

In the Linux kernel, the following vulnerability has been resolved: gpio: sim: fix a memory leak Fix an inverted logic bug in gpio_sim_remove_hogs() that leads to GPIO hog structures never being freed.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b
https://git.kernel.org/stable/c/854e1ecff266033d3149666d3c5b8b0e174b4210
https://lore.kernel.org/linux-cve-announce/2024052158-CVE-2023-52706-1652@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-52706
https://www.cve.org/CVERecord?id=CVE-2023-52706

History

No history.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-21T15:22:54.679Z

Updated: 2024-12-19T08:24:31.569Z

Reserved: 2024-03-07T14:49:46.891Z

Link: CVE-2023-52706

Vulnrichment

Updated: 2024-08-02T23:11:35.922Z

NVD

Status : Awaiting Analysis

Published: 2024-05-21T16:15:12.920

Modified: 2024-11-21T08:40:24.417

Link: CVE-2023-52706

Redhat

Severity : Low

Publid Date: 2024-05-21T00:00:00Z

Links: CVE-2023-52706 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-52706", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-03-07T14:49:46.891Z", "datePublished": "2024-05-21T15:22:54.679Z", "dateUpdated": "2024-12-19T08:24:31.569Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-12-19T08:24:31.569Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: sim: fix a memory leak\n\nFix an inverted logic bug in gpio_sim_remove_hogs() that leads to GPIO\nhog structures never being freed."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpio/gpio-sim.c"], "versions": [{"version": "cb8c474e79be458f58e9df073f51ca159f3a2aa0", "lessThan": "854e1ecff266033d3149666d3c5b8b0e174b4210", "status": "affected", "versionType": "git"}, {"version": "cb8c474e79be458f58e9df073f51ca159f3a2aa0", "lessThan": "79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpio/gpio-sim.c"], "versions": [{"version": "5.17", "status": "affected"}, {"version": "0", "lessThan": "5.17", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.13", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.2", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/854e1ecff266033d3149666d3c5b8b0e174b4210"}, {"url": "https://git.kernel.org/stable/c/79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b"}], "title": "gpio: sim: fix a memory leak", "x_generator": {"engine": "bippy-5f407fcff5a0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-06-05T17:18:55.625779Z", "id": "CVE-2023-52706", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-05T17:19:03.460Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:11:35.922Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/854e1ecff266033d3149666d3c5b8b0e174b4210", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/854e1ecff266033d3149666d3c5b8b0e174b4210", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:11:35.922Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52706", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-05T17:18:55.625779Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-05T17:19:00.638Z"}}], "cna": {"title": "gpio: sim: fix a memory leak", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "cb8c474e79be458f58e9df073f51ca159f3a2aa0", "lessThan": "854e1ecff266033d3149666d3c5b8b0e174b4210", "versionType": "git"}, {"status": "affected", "version": "cb8c474e79be458f58e9df073f51ca159f3a2aa0", "lessThan": "79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b", "versionType": "git"}], "programFiles": ["drivers/gpio/gpio-sim.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "5.17"}, {"status": "unaffected", "version": "0", "lessThan": "5.17", "versionType": "semver"}, {"status": "unaffected", "version": "6.1.13", "versionType": "semver", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.2", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/gpio/gpio-sim.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/854e1ecff266033d3149666d3c5b8b0e174b4210"}, {"url": "https://git.kernel.org/stable/c/79eeab1d85e0fee4c0bc36f3b6ddf3920f39f74b"}], "x_generator": {"engine": "bippy-5f407fcff5a0"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: sim: fix a memory leak\n\nFix an inverted logic bug in gpio_sim_remove_hogs() that leads to GPIO\nhog structures never being freed."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-12-19T08:24:31.569Z"}}}, "cveMetadata": {"cveId": "CVE-2023-52706", "state": "PUBLISHED", "dateUpdated": "2024-12-19T08:24:31.569Z", "dateReserved": "2024-03-07T14:49:46.891Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-21T15:22:54.679Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}