1212608 – (CVE-2023-3359) VUL-0: CVE-2023-3359: kernel-source,kernel-source-azure,kernel-source-rt: NULL Pointer Dereference in drivers/nvmem/brcm_nvram.c

Bug 1212608 (CVE-2023-3359) - VUL-0: CVE-2023-3359: kernel-source,kernel-source-azure,kernel-source-rt: NULL Pointer Dereference in drivers/nvmem/brcm_nvram.c

Summary: VUL-0: CVE-2023-3359: kernel-source,kernel-source-azure,kernel-source-rt: NUL...

Status:	RESOLVED INVALID

Alias:	CVE-2023-3359

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/370118/
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2023-06-22 07:39 UTC by Cathy Hu
Modified:	2023-06-23 07:31 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Cathy Hu 2023-06-22 07:39:02 UTC

CVE-2023-3359

An issue was discovered in the Linux kernel through 6.1-rc8.
brcm_nvram_parse in drivers/nvmem/brcm_nvram.c
lacks check of the return value of kzalloc() and will
cause the NULL Pointer Dereference.

Reference:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b0576ade3aaf24b376ea1a4406ae138e2a22b0c0

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-3359
https://bugzilla.redhat.com/show_bug.cgi?id=2168251

Comment 1 Cathy Hu 2023-06-22 07:39:18 UTC

Fixing commit: https://github.com/torvalds/linux/commit/b0576ade3aaf24b376ea1a4406ae138e2a22b0c0    
    
Commit introducing the issue: https://github.com/torvalds/linux/commit/6e977eaa8280e957b87904b536661550f2a6b3e8    

Not affected (already contains fix):
- ALP-current
- stable
                                                       
Not affected (does not contain introducing commit):
- SLE12-SP5
- cve/linux-4.12
- cve/linux-5.3
- cve/linux-3.0    
- cve/linux-4.4    
- SLE15-SP4-AZURE
- SLE15-SP4-RT
- SLE15-SP4
- SLE15-SP5
- SLE15-SP5-AZURE
- SLE15-SP5-RT

Comment 2 Joey Lee 2023-06-23 01:54:05 UTC

(In reply to Hu from comment #1)
> Fixing commit:
> https://github.com/torvalds/linux/commit/
> b0576ade3aaf24b376ea1a4406ae138e2a22b0c0    
>     
> Commit introducing the issue:
> https://github.com/torvalds/linux/commit/
> 6e977eaa8280e957b87904b536661550f2a6b3e8    
> 
> Not affected (already contains fix):
> - ALP-current
> - stable
>                                                        
> Not affected (does not contain introducing commit):
> - SLE12-SP5
> - cve/linux-4.12
> - cve/linux-5.3
> - cve/linux-3.0    
> - cve/linux-4.4    
> - SLE15-SP4-AZURE
> - SLE15-SP4-RT
> - SLE15-SP4
> - SLE15-SP5
> - SLE15-SP5-AZURE
> - SLE15-SP5-RT

Looks that we don't need do anything. reset assigner.

Comment 3 Cathy Hu 2023-06-23 07:31:23 UTC

closing