PT-2023-9847 · Linux+10 · Linux Kernel+10
Dan Carpenter
·
Published
2023-09-19
·
Updated
2025-09-29
·
CVE-2023-52530
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue is related to a potential key use-after-free in the wifi: mac80211 component of the Linux kernel. When
ieee80211 key link() is called by ieee80211 gtk rekey add() but returns 0 due to KRACK protection (identical key reinstall), ieee80211 gtk rekey add() will still return a pointer into the key, in a potential use-after-free. This normally doesn't happen since it's only called by iwlwifi in case of WoWLAN rekey offload which has its own KRACK protection, but still better to fix, do that by returning an error code and converting that to success on the cfg80211 boundary only, leaving the error for bad callers of ieee80211 gtk rekey add().Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu