CVE-2023-52916

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a memory overwrite when capturing 1600x900, which could cause the system to crash when system memory usage is tight. The size of the macro block captured is 8x8, and to fix this issue, the height of src-buf should be 8 aligned. The vulnerability can be reproduced by using 1600x900 to display on the host, mounting an ISO through 'Virtual media' on OpenBMC's web, running a script to do sha continuously, and opening KVM on OpenBMC's web.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2025-15395

CVE-2023-52916

DLA-4076-1

OESA-2024-2150

OESA-2024-2151

OESA-2024-2153

OPENSUSE-SU-2024_3551-1

OPENSUSE-SU-2024_3561-1

OPENSUSE-SU-2024_3564-1

OPENSUSE-SU-2024_3587-1

OPENSUSE-SU-2024_3592-1

SUSE-SU-2024:3551-1

SUSE-SU-2024:3553-1

SUSE-SU-2024:3561-1

SUSE-SU-2024:3564-1

SUSE-SU-2024:3569-1

SUSE-SU-2024:3587-1

SUSE-SU-2024:3592-1

SUSE-SU-2025:20073-1

SUSE-SU-2025:20077-1

Affected Products

Astra Linux

Debian

Linux Kernel

Red Os

Suse

CVE-2023-52916

Weakness Enumeration

Related Identifiers

Affected Products

References · 516