In the Linux kernel, the following vulnerability has been resolved: can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds The Linux kernel CVE team has assigned CVE-2023-52878 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024052122-CVE-2023-52878-d433@gregkh/T
The result of automatic check (that is developed by Alexander Larkin) for this CVE-2023-52878 is: SKIP The Fixes patch not applied yet, so unlikely that actual: a6e4bc5304033e434fabccabb230b8e9ff55d76f YES NO NO unknown (where first YES/NO value means if related sources built).