CVE-2023-45862
Public on 2023-10-14
Modified on 2024-04-26
Description
An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation.
Severity
Important
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| HAQM Linux 1 | kernel | 2023-03-17 | ALAS-2023-1701 | Fixed |
| HAQM Linux 2 - Kernel-5.15 Extra | kernel | Not Affected | ||
| HAQM Linux 2 - Core | kernel | 2023-03-17 | ALAS2-2023-1987 | Fixed |
| HAQM Linux 2 - Kernel-5.10 Extra | kernel | 2023-03-17 | ALAS2KERNEL-5.10-2023-028 | Fixed |
| HAQM Linux 2 - Kernel-5.4 Extra | kernel | 2023-03-17 | ALAS2KERNEL-5.4-2023-043 | Fixed |
| HAQM Linux 2023 | kernel | Pending Fix |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| HAQM Linux | CVSSv3 | 7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| NVD | CVSSv3 | 5.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |