CVE-2023-1380

A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leading to a denial of service.

Published: Mar 27, 2023
Updated: Apr 14, 2023
CVE: CVE-2023-1380
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.1
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWEs:

CWE-125

Affected Software
References

Software	From	Fixed in
redhat / enterprise_linux	8.0	8.0.x
redhat / enterprise_linux	9.0	9.0.x
linux / linux_kernel	6.3-rc1	6.3-rc1.x
linux / linux_kernel	6.3-rc2	6.3-rc2.x
linux / linux_kernel	6.3-rc3	6.3-rc3.x
linux / linux_kernel	6.3-rc4	6.3-rc4.x
linux / linux_kernel	6.3-rc5	6.3-rc5.x
linux / linux_kernel	6.3-rc6	6.3-rc6.x
linux / linux_kernel	6.3	6.3.x
linux / linux_kernel	6.3-rc7	6.3-rc7.x
linux / linux_kernel	6.2	6.2.14
linux / linux_kernel	6.1	6.1.27
linux / linux_kernel	3.2.1	4.14.315
linux / linux_kernel	4.19	4.19.283
linux / linux_kernel	5.4	5.4.243
linux / linux_kernel	5.10	5.10.180
linux / linux_kernel	5.15	5.15.110
debian / debian_linux	10.0	10.0.x
debian / debian_linux	11.0	11.0.x
canonical / ubuntu_linux	18.04	18.04.x
canonical / ubuntu_linux	14.04	14.04.x
canonical / ubuntu_linux	20.04	20.04.x
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	22.04	22.04.x

Vulnerability Database

289,599

CVE-2023-1380