CVE-2023-53717

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the ath9k module related to a potential stack-out-of-bounds write. This issue occurs in the ath9k wmi rsp callback() function, which is invoked after a timeout in ath9k wmi cmd(). The function attempts to write to wmi->cmd rsp buf, a stack-allocated buffer that may no longer be valid following a timeout. Setting wmi->last seq id to 0 when a timeout occurs addresses this problem. The issue was identified using a modified version of syzkaller. The call trace includes functions such as memcpy, ath9k wmi ctrl rx, ath9k htc rx msg, ath9k hif usb reg in cb, usb hcd giveback urb, usb hcd giveback urb, dummy timer, call timer fn, run timer softirq, do softirq, irq exit rcu, and sysvec apic timer interrupt.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.