PT-2023-9368 · Linux+7 · Linux Kernel+7

Ping-Ke Shih

·

Published

2023-09-13

·

Updated

2025-09-29

·

CVE-2023-52832

CVSS v3.1

9.1

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the Linux kernel's wifi component, specifically the mac80211 module. A UBSAN warning occurs when the ieee80211 get tx power() function returns the INT MIN value, which is used internally to represent an "unset power level". This warning is caused by a signed-integer-overflow in the net/wireless/nl80211.c file. The vulnerability may allow a remote attacker to access confidential data or cause a denial of service. The nl80211 send iface() function is involved in the call trace, and the ieee80211 if add() and ieee80211 register hw() functions are also mentioned.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-920

Related Identifiers

ALSA-2024:5101
ALSA-2024:5102
ALSA-2025_16880
BDU:2024-06927
CESA-2024_5101
CESA-2024_5102
CVE-2023-52832
INFSA-2024_5101
INFSA-2024_5102
OESA-2024-1692
OESA-2024-1693
OESA-2024-1694
OPENSUSE-SU-2024_2189-1
RHSA-2024:2394
RHSA-2024:5101
RHSA-2024:5102
RHSA-2024_2394
RHSA-2024_5101
RHSA-2024_5102
RLSA-2024:5101
RLSA-2024:5102
RXSA-2024:5101
SUSE-SU-2024:2008-1
SUSE-SU-2024:2011-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2189-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2360-1
SUSE-SU-2024:2381-1
SUSE-SU-2024:2561-1
SUSE-SU-2024:2571-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1

Affected Products

Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse