{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-52510","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-02-20T12:30:33.315Z","datePublished":"2024-03-02T21:52:22.645Z","dateUpdated":"2025-05-04T07:38:17.788Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T07:38:17.788Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nieee802154: ca8210: Fix a potential UAF in ca8210_probe\n\nIf of_clk_add_provider() fails in ca8210_register_ext_clock(),\nit calls clk_unregister() to release priv->clk and returns an\nerror. However, the caller ca8210_probe() then calls ca8210_remove(),\nwhere priv->clk is freed again in ca8210_unregister_ext_clock(). In\nthis case, a use-after-free may happen in the second time we call\nclk_unregister().\n\nFix this by removing the first clk_unregister(). Also, priv->clk could\nbe an error code on failure of clk_register_fixed_rate(). Use\nIS_ERR_OR_NULL to catch this case in ca8210_unregister_ext_clock()."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ieee802154/ca8210.c"],"versions":[{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"28b68cba378e3e50a4082b65f262bc4f2c7c2add","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"cdb46be93c1f7bbf2c4649e9fc5fb147cfb5245d","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"85c2857ef90041f567ce98722c1c342c4d31f4bc","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"55e06850c7894f00d41b767c5f5665459f83f58f","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"84c6aa0ae5c4dc121f9996bb8fed46c80909d80e","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"217efe32a45249eb07dcd7197e8403de98345e66","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"becf5c147198f4345243c5df0c4f035415491640","status":"affected","versionType":"git"},{"version":"ded845a781a578dfb0b5b2c138e5a067aa3b1242","lessThan":"f990874b1c98fe8e57ee9385669f501822979258","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ieee802154/ca8210.c"],"versions":[{"version":"4.12","status":"affected"},{"version":"0","lessThan":"4.12","status":"unaffected","versionType":"semver"},{"version":"4.14.328","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.297","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.259","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.199","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.136","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.59","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.5.8","lessThanOrEqual":"6.5.*","status":"unaffected","versionType":"semver"},{"version":"6.6","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"4.14.328"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"4.19.297"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"5.4.259"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"5.10.199"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"5.15.136"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.1.59"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.5.8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"6.6"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/28b68cba378e3e50a4082b65f262bc4f2c7c2add"},{"url":"https://git.kernel.org/stable/c/cdb46be93c1f7bbf2c4649e9fc5fb147cfb5245d"},{"url":"https://git.kernel.org/stable/c/85c2857ef90041f567ce98722c1c342c4d31f4bc"},{"url":"https://git.kernel.org/stable/c/55e06850c7894f00d41b767c5f5665459f83f58f"},{"url":"https://git.kernel.org/stable/c/84c6aa0ae5c4dc121f9996bb8fed46c80909d80e"},{"url":"https://git.kernel.org/stable/c/217efe32a45249eb07dcd7197e8403de98345e66"},{"url":"https://git.kernel.org/stable/c/becf5c147198f4345243c5df0c4f035415491640"},{"url":"https://git.kernel.org/stable/c/f990874b1c98fe8e57ee9385669f501822979258"}],"title":"ieee802154: ca8210: Fix a potential UAF in ca8210_probe","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CISA ADP Vulnrichment","metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2023-52510","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-03-04T19:37:23.493520Z"}}}],"providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-04T17:23:32.672Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T23:03:20.696Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/28b68cba378e3e50a4082b65f262bc4f2c7c2add","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/cdb46be93c1f7bbf2c4649e9fc5fb147cfb5245d","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/85c2857ef90041f567ce98722c1c342c4d31f4bc","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/55e06850c7894f00d41b767c5f5665459f83f58f","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/84c6aa0ae5c4dc121f9996bb8fed46c80909d80e","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/217efe32a45249eb07dcd7197e8403de98345e66","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/becf5c147198f4345243c5df0c4f035415491640","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/f990874b1c98fe8e57ee9385669f501822979258","tags":["x_transferred"]}]}]}}