CVE-2023-54052
high
CVSS v3
—
CVSS v2
—
VIR risk
8.0
Description
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU txs may be dropped if the frame is aggregated in AMSDU. When the problem shows up, some SKBs would be hold in driver to cause network stopped temporarily. Even if the problem can be recovered by txs timeout handling, mt7921 still need to disable txs in AMSDU to avoid this issue.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-54052
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2023-54052.html
Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:2394
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| rhel | 9 | fixed | |
| sles | affected | | |
| debian | bookworm | fixed | 6.1.52-1 |
| debian | bullseye | fixed | 0 |
| debian | forky | fixed | 6.5.3-1 |
| debian | sid | fixed | 6.5.3-1 |
| debian | trixie | fixed | 6.5.3-1 |
References
Verify integrity in audit chain (admin only). AS-IS.