CVE-2023-53315

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability exists in the Linux kernel related to the ath11k driver, specifically concerning SKB (Socket Kernel Buffer) corruption within the REO (Receive Early Output) destination ring. Prolonged traffic operation can lead to the reception of invalid RX descriptors, causing the retrieval of incorrect SKB memory and subsequent memory corruption, potentially leading to a system crash. The issue stems from an incorrect starting ID for IDR (IDR lookup with buffer id) allocation and a lack of proper descriptor validation. The crash signature involves a kernel paging request at a specific virtual address.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.