{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-52494","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-02-20T12:30:33.304Z","datePublished":"2024-02-29T15:52:11.674Z","dateUpdated":"2025-05-04T12:49:06.871Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T12:49:06.871Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbus: mhi: host: Add alignment check for event ring read pointer\n\nThough we do check the event ring read pointer by \"is_valid_ring_ptr\"\nto make sure it is in the buffer range, but there is another risk the\npointer may be not aligned.  Since we are expecting event ring elements\nare 128 bits(struct mhi_ring_element) aligned, an unaligned read pointer\ncould lead to multiple issues like DoS or ring buffer memory corruption.\n\nSo add a alignment check for event ring read pointer."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/bus/mhi/host/main.c"],"versions":[{"version":"ec32332df7645e0ba463a08d483fe97665167071","lessThan":"94991728c84f8df54fd9eec9b85855ef9057ea08","status":"affected","versionType":"git"},{"version":"ec32332df7645e0ba463a08d483fe97665167071","lessThan":"2df39ac8f813860f79782807c3f7acff40b3c551","status":"affected","versionType":"git"},{"version":"ec32332df7645e0ba463a08d483fe97665167071","lessThan":"a9ebfc405fe1be145f414eafadcbf09506082010","status":"affected","versionType":"git"},{"version":"ec32332df7645e0ba463a08d483fe97665167071","lessThan":"ecf8320111822a1ae5d5fc512953eab46d543d0b","status":"affected","versionType":"git"},{"version":"ec32332df7645e0ba463a08d483fe97665167071","lessThan":"eff9704f5332a13b08fbdbe0f84059c9e7051d5f","status":"affected","versionType":"git"},{"version":"a1d2bd164c1c78f87968b7883964175ec41c32ae","status":"affected","versionType":"git"},{"version":"fd5f40fc887485a8b9a6806a640a0d8e0ef1afb6","status":"affected","versionType":"git"},{"version":"76879a980cd5ede4cb9a638999fb80d37bc09db5","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/bus/mhi/host/main.c"],"versions":[{"version":"5.13","status":"affected"},{"version":"0","lessThan":"5.13","status":"unaffected","versionType":"semver"},{"version":"5.15.149","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.76","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.15","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.7.3","lessThanOrEqual":"6.7.*","status":"unaffected","versionType":"semver"},{"version":"6.8","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.13","versionEndExcluding":"5.15.149"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.13","versionEndExcluding":"6.1.76"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.13","versionEndExcluding":"6.6.15"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.13","versionEndExcluding":"6.7.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.13","versionEndExcluding":"6.8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10.36"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11.20"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12.3"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/94991728c84f8df54fd9eec9b85855ef9057ea08"},{"url":"https://git.kernel.org/stable/c/2df39ac8f813860f79782807c3f7acff40b3c551"},{"url":"https://git.kernel.org/stable/c/a9ebfc405fe1be145f414eafadcbf09506082010"},{"url":"https://git.kernel.org/stable/c/ecf8320111822a1ae5d5fc512953eab46d543d0b"},{"url":"https://git.kernel.org/stable/c/eff9704f5332a13b08fbdbe0f84059c9e7051d5f"}],"title":"bus: mhi: host: Add alignment check for event ring read pointer","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CISA ADP Vulnrichment","metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2023-52494","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-03-12T14:58:15.977989Z"}}}],"providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-04T17:23:07.781Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T23:03:20.652Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/94991728c84f8df54fd9eec9b85855ef9057ea08","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/2df39ac8f813860f79782807c3f7acff40b3c551","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/a9ebfc405fe1be145f414eafadcbf09506082010","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/ecf8320111822a1ae5d5fc512953eab46d543d0b","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/eff9704f5332a13b08fbdbe0f84059c9e7051d5f","tags":["x_transferred"]}]}]}}