PT-2023-9749 · Linux+7 · Linux Kernel+7

Published

2023-10-20

·

Updated

2025-09-29

·

CVE-2023-52864

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the wmi char open() function in the Linux kernel, which may cause memory corruption if it is unable to find its driver. This can happen when the associated WMI device is deleted in wmi free devices(). The problem is fixed by using the miscdevice pointer to retrieve the WMI device data associated with a char device using container of(). This also avoids wmi char open() picking a wrong WMI device bound to a driver with the same name as the original driver.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Buffer Overflow

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-402CWE-119CWE-476

Related Identifiers

ALSA-2024:5101
ALSA-2024:5102
ALSA-2024:5363
ALSA-2025_16880
BDU:2024-10416
CESA-2024_5101
CESA-2024_5102
CVE-2023-52864
INFSA-2024_5101
INFSA-2024_5102
INFSA-2024_5363
OESA-2024-1693
OESA-2024-1694
OESA-2024-1705
OPENSUSE-SU-2024_2189-1
RHSA-2024:5101
RHSA-2024:5102
RHSA-2024:5363
RHSA-2024:5364
RHSA-2024:5365
RHSA-2024:5692
RHSA-2024:6993
RHSA-2024_5101
RHSA-2024_5102
RHSA-2024_5363
RLSA-2024:5101
RLSA-2024:5102
RLSA-2024:5363
RXSA-2024:5101
SUSE-SU-2024:1979-1
SUSE-SU-2024:1983-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2011-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2184-1
SUSE-SU-2024:2189-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2571-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1

Affected Products

Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse