CVE-2023-52595: wifi: rt2x00: restart beacon queue when hardware reset
First published: Wed Mar 06 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: wifi: rt2x00: restart beacon queue when hardware reset The Linux kernel CVE team has assigned <a href="https://access.redhat.com/security/cve/CVE-2023-52595">CVE-2023-52595</a> to this issue. Upstream advisory: <a href="https://lore.kernel.org/linux-cve-announce/2024030645-CVE-2023-52595-d018@gregkh/T">https://lore.kernel.org/linux-cve-announce/2024030645-CVE-2023-52595-d018@gregkh/T</a>
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <5.4.269 | 5.4.269 |
| redhat/kernel | <5.10.210 | 5.10.210 |
| redhat/kernel | <5.15.149 | 5.15.149 |
| redhat/kernel | <6.1.77 | 6.1.77 |
| redhat/kernel | <6.6.16 | 6.6.16 |
| redhat/kernel | <6.7.4 | 6.7.4 |
| redhat/kernel | <6.8 | 6.8 |
| Linux Kernel | <5.4.269 | |
| Linux Kernel | >=5.5<5.10.210 | |
| Linux Kernel | >=5.11<5.15.149 | |
| Linux Kernel | >=5.16<6.1.77 | |
| Linux Kernel | >=6.2<6.6.16 | |
| Linux Kernel | >=6.7<6.7.4 | |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.21-1 | |
| IBM Security Verify Governance - Identity Manager | <=ISVG 10.0.2 | |
| IBM Security Verify Governance, Identity Manager Software Stack | <=ISVG 10.0.2 | |
| IBM Security Verify Governance, Identity Manager Virtual Appliance | <=ISVG 10.0.2 | |
| IBM Security Verify Governance Identity Manager Container | <=ISVG 10.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/04cfe4a5da57ab9358cdfadea22bcb37324aaf83
- https://git.kernel.org/stable/c/4cc198580a7b93a36f5beb923f40f7ae27a3716c
- https://git.kernel.org/stable/c/69e905beca193125820c201ab3db4fb0e245124e
- https://git.kernel.org/stable/c/739b3ccd9486dff04af95f9a890846d088a84957
- https://git.kernel.org/stable/c/a11d965a218f0cd95b13fe44d0bcd8a20ce134a8
- https://git.kernel.org/stable/c/e1f113b57ddd18274d7c83618deca25cc880bc48
- https://git.kernel.org/stable/c/fdb580ed05df8973aa5149cafa598c64bebcd0cb
- https://launchpad.net/bugs/cve/CVE-2023-52595
- https://access.redhat.com/security/cve/CVE-2023-52595
- https://lore.kernel.org/linux-cve-announce/2024030645-CVE-2023-52595-d018@gregkh/T
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2268316
- https://access.redhat.com/errata/RHSA-2024:3618
- https://access.redhat.com/errata/RHSA-2024:3627
- https://access.redhat.com/errata/RHSA-2024:9315
- https://bugzilla.redhat.com/show_bug.cgi?id=2268315
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52595
- https://nvd.nist.gov/vuln/detail/CVE-2023-52595
- https://security-tracker.debian.org/tracker/CVE-2023-52595
- https://ubuntu.com/security/CVE-2023-52595
- https://git.kernel.org/linus/a11d965a218f0cd95b13fe44d0bcd8a20ce134a8
- https://www.ibm.com/support/pages/node/7230443 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2023-52595?
CVE-2023-52595 has been classified with moderate severity as it pertains to a vulnerability in the Linux kernel's handling of hardware resets.
How do I fix CVE-2023-52595?
To address CVE-2023-52595, update the Linux kernel to one of the patched versions, such as 5.4.269, 5.10.210, 5.15.149, 6.1.77, 6.6.16, 6.7.4, or newer.
Which software versions are affected by CVE-2023-52595?
CVE-2023-52595 affects several Linux kernel versions, including 5.4 up to 5.4.269, 5.10 up to 5.10.210, 5.15 up to 5.15.149, and other versions up to 6.1.77.
What components are affected by CVE-2023-52595?
The vulnerability affects the rt2x00 driver in the Linux kernel, specifically related to the beacon queue during hardware resets.
Is there a known exploit for CVE-2023-52595?
As of now, there is no publicly disclosed exploit for CVE-2023-52595, but it is advisable to apply mitigations promptly.
- agent/title
- agent/type
- agent/first-publish-date
- agent/author
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-52595
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/remedy
- agent/trending
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-cve
- collector/usn-cve
- source/Ubuntu
- collector/security-tracker-debian
- source/Debian
- agent/last-modified-date
- agent/references
- agent/source
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/ibm-support
- source/IBM
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.16
- version/linux kernel/6.2
- version/linux kernel/6.7
- package-manager/debian
- vendor/ibm
- canonical/ibm security verify governance - identity manager
- version/ibm security verify governance - identity manager/isvg 10.0.2
- canonical/ibm security verify governance, identity manager software stack
- version/ibm security verify governance, identity manager software stack/isvg 10.0.2
- canonical/ibm security verify governance, identity manager virtual appliance
- version/ibm security verify governance, identity manager virtual appliance/isvg 10.0.2
- canonical/ibm security verify governance identity manager container
- version/ibm security verify governance identity manager container/isvg 10.0.2