active/CVE-2023-52494


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: bus: mhi: host: Add alignment check for event ring read pointer
References:
Notes:
 carnil> Introduced in ec32332df764 ("bus: mhi: core: Sanity check values from remote
 carnil> device before use"). Vulnerable versions: 5.10.36 5.11.20 5.12.3 5.13-rc1.
Bugs:
upstream: released (6.8-rc1) [eff9704f5332a13b08fbdbe0f84059c9e7051d5f]
6.7-upstream-stable: released (6.7.3) [ecf8320111822a1ae5d5fc512953eab46d543d0b]
6.6-upstream-stable: released (6.6.15) [a9ebfc405fe1be145f414eafadcbf09506082010]
6.1-upstream-stable: released (6.1.76) [2df39ac8f813860f79782807c3f7acff40b3c551]
5.10-upstream-stable: needed
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.6.15-1)
6.1-bookworm-security: released (6.1.76-1)
5.10-bullseye-security: needed
4.19-buster-security: N/A "Vulnerable code not present"