CVE-2023-28577
Summary
| CVE | CVE-2023-28577 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-08-08 10:15:00 UTC |
| Updated | 2023-08-15 13:43:00 UTC |
| Description | In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address. |
Risk And Classification
Problem Types: CWE-416
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Qualcomm | Fastconnect 6800 | - | All | All | All |
| Operating System | Qualcomm | Fastconnect 6800 Firmware | - | All | All | All |
| Hardware | Qualcomm | Fastconnect 6900 | - | All | All | All |
| Operating System | Qualcomm | Fastconnect 6900 Firmware | - | All | All | All |
| Hardware | Qualcomm | Fastconnect 7800 | - | All | All | All |
| Operating System | Qualcomm | Fastconnect 7800 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qca6391 | - | All | All | All |
| Operating System | Qualcomm | Qca6391 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qca6426 | - | All | All | All |
| Operating System | Qualcomm | Qca6426 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qca6436 | - | All | All | All |
| Operating System | Qualcomm | Qca6436 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qcn9074 | - | All | All | All |
| Operating System | Qualcomm | Qcn9074 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qcs410 | - | All | All | All |
| Operating System | Qualcomm | Qcs410 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qcs610 | - | All | All | All |
| Operating System | Qualcomm | Qcs610 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sd865 5g | - | All | All | All |
| Operating System | Qualcomm | Sd865 5g Firmware | - | All | All | All |
| Hardware | Qualcomm | Snapdragon 865 5g | - | All | All | All |
| Operating System | Qualcomm | Snapdragon 865 5g Firmware | - | All | All | All |
| Hardware | Qualcomm | Snapdragon 865 5g | - | All | All | All |
| Operating System | Qualcomm | Snapdragon 865 5g Firmware | - | All | All | All |
| Hardware | Qualcomm | Snapdragon 870 5g | - | All | All | All |
| Operating System | Qualcomm | Snapdragon 870 5g Firmware | - | All | All | All |
| Hardware | Qualcomm | Snapdragon 8 Gen 1 | - | All | All | All |
| Operating System | Qualcomm | Snapdragon 8 Gen 1 Firmware | - | All | All | All |
| Hardware | Qualcomm | Snapdragon X55 5g | - | All | All | All |
| Operating System | Qualcomm | Snapdragon X55 5g Firmware | - | All | All | All |
| Hardware | Qualcomm | Snapdragon Xr2 5g | - | All | All | All |
| Operating System | Qualcomm | Snapdragon Xr2 5g Firmware | - | All | All | All |
| Hardware | Qualcomm | Sw5100 | - | All | All | All |
| Hardware | Qualcomm | Sw5100p | - | All | All | All |
| Operating System | Qualcomm | Sw5100p Firmware | - | All | All | All |
| Operating System | Qualcomm | Sw5100 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sxr2130 | - | All | All | All |
| Operating System | Qualcomm | Sxr2130 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcd9341 | - | All | All | All |
| Operating System | Qualcomm | Wcd9341 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcd9370 | - | All | All | All |
| Operating System | Qualcomm | Wcd9370 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcd9380 | - | All | All | All |
| Operating System | Qualcomm | Wcd9380 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcn3660b | - | All | All | All |
| Operating System | Qualcomm | Wcn3660b Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcn3680b | - | All | All | All |
| Operating System | Qualcomm | Wcn3680b Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcn3950 | - | All | All | All |
| Operating System | Qualcomm | Wcn3950 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcn3980 | - | All | All | All |
| Operating System | Qualcomm | Wcn3980 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wcn3988 | - | All | All | All |
| Operating System | Qualcomm | Wcn3988 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wsa8810 | - | All | All | All |
| Operating System | Qualcomm | Wsa8810 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wsa8815 | - | All | All | All |
| Operating System | Qualcomm | Wsa8815 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wsa8830 | - | All | All | All |
| Operating System | Qualcomm | Wsa8830 Firmware | - | All | All | All |
| Hardware | Qualcomm | Wsa8835 | - | All | All | All |
| Operating System | Qualcomm | Wsa8835 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Qualcomm Documentation | MISC | www.qualcomm.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.