Bug 1224631 (CVE-2023-52688) - VUL-0: CVE-2023-52688: kernel: wifi: ath12k: fix the error handler of rfkill config
Summary: VUL-0: CVE-2023-52688: kernel: wifi: ath12k: fix the error handler of rfkill ...
Status: RESOLVED FIXED
Alias: CVE-2023-52688
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/406421/
Whiteboard: CVSSv3.1:SUSE:CVE-2023-52688:5.5:(AV:...
Keywords:
Depends on:
Blocks:
 
Reported: 2024-05-20 15:31 UTC by SMASH SMASH
Modified: 2024-06-10 12:21 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description SMASH SMASH 2024-05-20 15:31:47 UTC 
In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: fix the error handler of rfkill config

When the core rfkill config throws error, it should free the
allocated resources. Currently it is not freeing the core pdev
create resources. Avoid this issue by calling the core pdev
destroy in the error handler of core rfkill config.

Found this issue in the code review and it is compile tested only.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52688
https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2023/CVE-2023-52688.mbox
https://git.kernel.org/stable/c/b4e593a7a22fa3c7d0550ef51c90b5c21f790aa8
https://git.kernel.org/stable/c/898d8b3e1414cd900492ee6a0b582f8095ba4a1a
https://www.cve.org/CVERecord?id=CVE-2023-52688
https://bugzilla.redhat.com/show_bug.cgi?id=2281307
Comment 1 Joey Lee 2024-05-21 08:37:39 UTC 
https://www.suse.com/security/cve/CVE-2023-52688.html
cvss 5.5
Comment 3 Joey Lee 2024-05-24 07:39:14 UTC 
Does not affect any branch. Nothing to be done
Comment 4 Gabriele Sonnu 2024-06-10 12:21:43 UTC 
All done, closing.