CVE-2023-52616
Published: Mar 18, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init When the mpi_ec_ctx structure is initialized, some fields are not cleared, causing a crash when referencing the field when the structure was released. Initially, this issue was ignored because memory for mpi_ec_ctx is allocated with the __GFP_ZERO flag. For example, this error will be triggered when calculating the Za value for SM2 separately.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f - < 0c3687822259a7628c85cd21a3445cbe3c367165affected d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f - < 2bb86817b33c9d704e127f92b838035a72c315b6affected d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f - < bb44477d4506e52785693a39f03cdc6a2c5e8598affected d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f - < 7ebf812b7019fd2d4d5a7ca45ef4bf3a6f4bda0aaffected d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f - < 7abdfd45a650c714d5ebab564bb1b988f14d9b49+1 more versions |
Linux | Linux | affected 5.10unaffected 0 - < 5.10unaffected 5.10.210 - <= 5.10.*unaffected 5.15.149 - <= 5.15.*unaffected 6.1.79 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now