2177389 – (CVE-2023-28328) CVE-2023-28328 kernel: Denial of service issue in az6027 driver in drivers/media/usb/dev-usb/az6027.c

Bug 2177389 (CVE-2023-28328) - CVE-2023-28328 kernel: Denial of service issue in az6027 driver in drivers/media/usb/dev-usb/az6027.c

Summary: CVE-2023-28328 kernel: Denial of service issue in az6027 driver in drivers/me...

Keywords:
Status:	NEW
Alias:	CVE-2023-28328
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Nobody
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2177390 2177391
Blocks:	2158739
TreeView+	depends on / blocked

Reported:	2023-03-11 10:33 UTC by Rohit Keshri
Modified:	2024-10-12 08:28 UTC (History)
CC List:	38 users (show)
Fixed In Version:	kernel 6.2 RC1
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2023:7268	None	None	None	2023-11-15 18:25:20 UTC
Red Hat Product Errata	RHBA-2023:7328	None	None	None	2023-11-16 11:38:54 UTC
Red Hat Product Errata	RHBA-2023:7338	None	None	None	2023-11-16 18:04:12 UTC
Red Hat Product Errata	RHBA-2023:7343	None	None	None	2023-11-20 01:58:42 UTC
Red Hat Product Errata	RHBA-2023:7346	None	None	None	2023-11-20 09:25:43 UTC
Red Hat Product Errata	RHSA-2023:6901	None	None	None	2023-11-14 15:15:07 UTC
Red Hat Product Errata	RHSA-2023:7077	None	None	None	2023-11-14 15:20:41 UTC
Red Hat Product Errata	RHSA-2024:0575	None	None	None	2024-01-30 13:21:17 UTC
Red Hat Product Errata	RHSA-2024:0724	None	None	None	2024-02-07 16:30:01 UTC

Description Rohit Keshri 2023-03-11 10:33:07 UTC

A null pointer dereference issue was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. A local user could use this flaw to crash the system or potentially cause a denial of service.

Reference:
https://lore.kernel.org/linux-media/20221120065918.2160782-1-zhongbaisong@huawei.com/
https://lore.kernel.org/lkml/CAO4mrfcPHB5aQJO=mpqV+p8mPLNg-Fok0gw8gZ=zemAfMGTzMg@mail.gmail.com/

Comment 9 errata-xmlrpc 2023-11-14 15:15:03 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2023:6901 https://access.redhat.com/errata/RHSA-2023:6901

Comment 10 errata-xmlrpc 2023-11-14 15:20:37 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2023:7077 https://access.redhat.com/errata/RHSA-2023:7077

Comment 13 errata-xmlrpc 2024-01-30 13:21:13 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2024:0575 https://access.redhat.com/errata/RHSA-2024:0575

Comment 15 errata-xmlrpc 2024-02-07 16:29:57 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Extended Update Support

Via RHSA-2024:0724 https://access.redhat.com/errata/RHSA-2024:0724

Note You need to log in before you can comment on or make changes to this bug.

acaringi
allarkin
bhu
chwhite
crwood
ddepaula
debarbos
desnesn
dfreiber
dvlasenk
ezulian
fhrbata
hkrzesin
jarod
jburrell
jfaracco
jferlan
jforbes
jlelli
joe.lawrence
jshortt
jstancek
jwyatt
kcarcia
kernel-mgr
lgoncalv
lzampier
ndegraef
nmurray
ptalbert
qzhao
rogbas
rvrbovsk
scweaver
tyberry
vkumar
walters
williams