CVE-2023-52665 in Linuxinfo

Summary

by MITRE • 05/17/2024

In the Linux kernel, the following vulnerability has been resolved:

powerpc/ps3_defconfig: Disable PPC64_BIG_ENDIAN_ELF_ABI_V2

Commit 8c5fa3b5c4df ("powerpc/64: Make ELFv2 the default for big-endian builds"), merged in Linux-6.5-rc1 changes the calling ABI in a way that is incompatible with the current code for the PS3's LV1 hypervisor calls.

This change just adds the line '# CONFIG_PPC64_BIG_ENDIAN_ELF_ABI_V2 is not set' to the ps3_defconfig file so that the PPC64_ELF_ABI_V1 is used.

Fixes run time errors like these:

BUG: Kernel NULL pointer dereference at 0x00000000 Faulting instruction address: 0xc000000000047cf0 Oops: Kernel access of bad area, sig: 11 [#1]
Call Trace: [c0000000023039e0] [c00000000100ebfc] ps3_create_spu+0xc4/0x2b0 (unreliable)
[c000000002303ab0] [c00000000100d4c4] create_spu+0xcc/0x3c4
[c000000002303b40] [c00000000100eae4] ps3_enumerate_spus+0xa4/0xf8

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservation

03/07/2024

Disclosure

05/17/2024

Moderation

revoked

Entry

VDB-264981

CPE

ready

CWE

CWE-476 (confirmed)

CVSS

4.8 (VulDB)

EPSS

0.00000

KEV

Activities

very low

Sector

Hostingprovider, Hospital, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-52665
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-52665
CVE Details	https://www.cvedetails.com/cve/CVE-2023-52665/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!