CVE & CISA-KEV Catalog

CVE-2023-52608

MEDIUM
4.7
CVSS v3
NVD

Description

In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Check mailbox/SMT channel for consistency On reception of a completion interrupt the shared memory area is accessed to retrieve the message header at first and then, if the message sequence number identifies a transaction which is still pending, the related payload is fetched too. When an SCMI command times out the channel ownership remains with the platform until eventually a late reply is received and, as a consequence, any further transmission attempt remains pending, waiting for the channel to be relinquished by the platform. Once that late reply is received the channel ownership is given back to the agent and any pending request is then allowed to proceed and overwrite the SMT area of the just delivered late reply; then the wait for the reply to the new request starts. It has been observed that the spurious IRQ related to the late reply can be wrongly associated with the freshly enqueued request: when that happens the SCMI stack in-flight lookup procedure is fooled by the fact that the message header now present in the SMT area is related to the new pending transaction, even though the real reply has still to arrive. This race-condition on the A2P channel can be detected by looking at the channel status bits: a genuine reply from the platform will have set the channel free bit before triggering the completion IRQ. Add a consistency check to validate such condition in the A2P ISR.

How to fix

Remediation Available
linuxDebian
Fixed in:6.1.76-1CVE-2023-52608
Fixed in:6.6.15-1CVE-2023-52608
Fixed in:6.6.15-1CVE-2023-52608
linuxUbuntu
Fixed in:5.15.0-106.116USN-6766-1
Fixed in:6.5.0-41.41USN-6818-1
linux-awsUbuntu
Fixed in:5.15.0-1061.67USN-6766-3
Fixed in:6.5.0-1021.21USN-6819-2
linux-aws-5.15Ubuntu
Fixed in:5.15.0-1061.67~20.04.1USN-6766-3
linux-azureUbuntu
Fixed in:5.15.0-1063.72USN-6766-1
Fixed in:6.5.0-1022.23USN-6819-1
linux-azure-5.15Ubuntu
Fixed in:5.15.0-1063.72~20.04.1USN-6766-1
linux-azure-6.5Ubuntu
Fixed in:6.5.0-1022.23~22.04.1USN-6819-1
linux-azure-fdeUbuntu
Fixed in:5.15.0-1063.72.1USN-6766-1
linux-azure-fde-5.15Ubuntu
Fixed in:5.15.0-1063.72~20.04.1.1USN-6766-1
linux-gcpUbuntu
Fixed in:5.15.0-1059.67USN-6766-1
Fixed in:6.5.0-1022.24USN-6818-1
linux-gcp-5.15Ubuntu
Fixed in:5.15.0-1059.67~20.04.1USN-6766-1
linux-gcp-6.5Ubuntu
Fixed in:6.5.0-1022.24~22.04.1USN-6818-1
linux-gkeUbuntu
Fixed in:5.15.0-1058.63USN-6766-1
linux-gkeopUbuntu
Fixed in:5.15.0-1044.51USN-6766-1
linux-gkeop-5.15Ubuntu
Fixed in:5.15.0-1044.51~20.04.1USN-6766-1
linux-hwe-5.15Ubuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-2
linux-hwe-6.5Ubuntu
Fixed in:6.5.0-41.41~22.04.2USN-6818-4
linux-ibmUbuntu
Fixed in:5.15.0-1054.57USN-6766-1
linux-ibm-5.15Ubuntu
Fixed in:5.15.0-1054.57~20.04.1USN-6766-1
linux-image-5.15.0-1044-gkeopUbuntu
Fixed in:5.15.0-1044.51~20.04.1USN-6766-1
Fixed in:5.15.0-1044.51USN-6766-1
linux-image-5.15.0-1054-ibmUbuntu
Fixed in:5.15.0-1054.57~20.04.1USN-6766-1
Fixed in:5.15.0-1054.57USN-6766-1
linux-image-5.15.0-1054-nvidiaUbuntu
Fixed in:5.15.0-1054.55USN-6766-1
linux-image-5.15.0-1054-nvidia-lowlatencyUbuntu
Fixed in:5.15.0-1054.55USN-6766-1
linux-image-5.15.0-1054-raspiUbuntu
Fixed in:5.15.0-1054.57USN-6766-2
linux-image-5.15.0-1057-intel-iotgUbuntu
Fixed in:5.15.0-1057.63USN-6795-1
linux-image-5.15.0-1058-gkeUbuntu
Fixed in:5.15.0-1058.63USN-6766-1
linux-image-5.15.0-1058-intel-iotgUbuntu
Fixed in:5.15.0-1058.64~20.04.1USN-6828-1
linux-image-5.15.0-1058-kvmUbuntu
Fixed in:5.15.0-1058.63USN-6766-1
linux-image-5.15.0-1059-gcpUbuntu
Fixed in:5.15.0-1059.67~20.04.1USN-6766-1
Fixed in:5.15.0-1059.67USN-6766-1
linux-image-5.15.0-1059-oracleUbuntu
Fixed in:5.15.0-1059.65~20.04.1USN-6766-1
Fixed in:5.15.0-1059.65USN-6766-1
linux-image-5.15.0-106-genericUbuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-2
Fixed in:5.15.0-106.116USN-6766-1
linux-image-5.15.0-106-generic-64kUbuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-2
Fixed in:5.15.0-106.116USN-6766-1
linux-image-5.15.0-106-generic-lpaeUbuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-2
Fixed in:5.15.0-106.116USN-6766-1
linux-image-5.15.0-106-lowlatencyUbuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-1
Fixed in:5.15.0-106.116USN-6766-1
linux-image-5.15.0-106-lowlatency-64kUbuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-1
Fixed in:5.15.0-106.116USN-6766-1
linux-image-5.15.0-1061-awsUbuntu
Fixed in:5.15.0-1061.67~20.04.1USN-6766-3
Fixed in:5.15.0-1061.67USN-6766-3
linux-image-5.15.0-1063-azureUbuntu
Fixed in:5.15.0-1063.72~20.04.1USN-6766-1
Fixed in:5.15.0-1063.72USN-6766-1
linux-image-5.15.0-1063-azure-fdeUbuntu
Fixed in:5.15.0-1063.72~20.04.1.1USN-6766-1
Fixed in:5.15.0-1063.72.1USN-6766-1
linux-image-6.5.0-1015-starfiveUbuntu
Fixed in:6.5.0-1015.16~22.04.1USN-6819-1
Fixed in:6.5.0-1015.16USN-6819-1
linux-image-6.5.0-1017-laptopUbuntu
Fixed in:6.5.0-1017.20USN-6818-2
linux-image-6.5.0-1018-raspiUbuntu
Fixed in:6.5.0-1018.21USN-6818-1
linux-image-6.5.0-1021-awsUbuntu
Fixed in:6.5.0-1021.21USN-6819-2
linux-image-6.5.0-1021-nvidiaUbuntu
Fixed in:6.5.0-1021.22USN-6818-3
linux-image-6.5.0-1021-nvidia-64kUbuntu
Fixed in:6.5.0-1021.22USN-6818-3
linux-image-6.5.0-1022-azureUbuntu
Fixed in:6.5.0-1022.23~22.04.1USN-6819-1
Fixed in:6.5.0-1022.23USN-6819-1
linux-image-6.5.0-1022-azure-fdeUbuntu
Fixed in:6.5.0-1022.23~22.04.1USN-6819-1
Fixed in:6.5.0-1022.23USN-6819-1
linux-image-6.5.0-1022-gcpUbuntu
Fixed in:6.5.0-1022.24~22.04.1USN-6818-1
Fixed in:6.5.0-1022.24USN-6818-1
linux-image-6.5.0-1024-oemUbuntu
Fixed in:6.5.0-1024.25USN-6819-3
linux-image-6.5.0-1024-oracleUbuntu
Fixed in:6.5.0-1024.24~22.04.1USN-6819-4
Fixed in:6.5.0-1024.24USN-6819-2
linux-image-6.5.0-1024-oracle-64kUbuntu
Fixed in:6.5.0-1024.24~22.04.1USN-6819-4
Fixed in:6.5.0-1024.24USN-6819-2
linux-image-6.5.0-41-genericUbuntu
Fixed in:6.5.0-41.41~22.04.2USN-6818-4
Fixed in:6.5.0-41.41USN-6818-1
linux-image-6.5.0-41-generic-64kUbuntu
Fixed in:6.5.0-41.41~22.04.2USN-6818-4
Fixed in:6.5.0-41.41USN-6818-1
linux-image-6.5.0-41-lowlatencyUbuntu
Fixed in:6.5.0-41.41.1~22.04.1USN-6818-1
Fixed in:6.5.0-41.41.1USN-6818-1
linux-image-6.5.0-41-lowlatency-64kUbuntu
Fixed in:6.5.0-41.41.1~22.04.1USN-6818-1
Fixed in:6.5.0-41.41.1USN-6818-1
linux-image-awsUbuntu
Fixed in:5.15.0.1061.67~20.04.1USN-6766-3
Fixed in:6.5.0.1021.21USN-6819-2
linux-image-aws-lts-22.04Ubuntu
Fixed in:5.15.0.1061.61USN-6766-3
linux-image-azureUbuntu
Fixed in:5.15.0.1063.72~20.04.1USN-6766-1
Fixed in:6.5.0.1022.23~22.04.1USN-6819-1
Fixed in:6.5.0.1022.26USN-6819-1
linux-image-azure-cvmUbuntu
Fixed in:5.15.0.1063.72~20.04.1USN-6766-1
linux-image-azure-fdeUbuntu
Fixed in:5.15.0.1063.72~20.04.1.41USN-6766-1
Fixed in:6.5.0.1022.23~22.04.1USN-6819-1
Fixed in:6.5.0.1022.26USN-6819-1
linux-image-azure-fde-lts-22.04Ubuntu
Fixed in:5.15.0.1063.72.41USN-6766-1
linux-image-azure-lts-22.04Ubuntu
Fixed in:5.15.0.1063.61USN-6766-1
linux-image-gcpUbuntu
Fixed in:5.15.0.1059.67~20.04.1USN-6766-1
Fixed in:6.5.0.1022.24~22.04.1USN-6818-1
Fixed in:6.5.0.1022.24USN-6818-1
linux-image-gcp-lts-22.04Ubuntu
Fixed in:5.15.0.1059.55USN-6766-1
linux-image-genericUbuntu
Fixed in:5.15.0.106.106USN-6766-1
Fixed in:6.5.0.41.41USN-6818-1
linux-image-generic-64kUbuntu
Fixed in:5.15.0.106.106USN-6766-1
Fixed in:6.5.0.41.41USN-6818-1
linux-image-generic-64k-hwe-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-generic-64k-hwe-22.04Ubuntu
Fixed in:6.5.0.41.41~22.04.2USN-6818-4
linux-image-generic-hwe-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-generic-hwe-22.04Ubuntu
Fixed in:6.5.0.41.41~22.04.2USN-6818-4
linux-image-generic-lpaeUbuntu
Fixed in:5.15.0.106.106USN-6766-1
Fixed in:6.5.0.41.41USN-6818-1
linux-image-generic-lpae-hwe-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-gkeUbuntu
Fixed in:5.15.0.1058.57USN-6766-1
linux-image-gke-5.15Ubuntu
Fixed in:5.15.0.1058.57USN-6766-1
linux-image-gkeopUbuntu
Fixed in:5.15.0.1044.43USN-6766-1
linux-image-gkeop-5.15Ubuntu
Fixed in:5.15.0.1044.51~20.04.1USN-6766-1
Fixed in:5.15.0.1044.43USN-6766-1
linux-image-ibmUbuntu
Fixed in:5.15.0.1054.57~20.04.1USN-6766-1
Fixed in:5.15.0.1054.50USN-6766-1
linux-image-intelUbuntu
Fixed in:5.15.0.1058.64~20.04.1USN-6828-1
linux-image-intel-iotgUbuntu
Fixed in:5.15.0.1058.64~20.04.1USN-6828-1
Fixed in:5.15.0.1057.57USN-6795-1
linux-image-kvmUbuntu
Fixed in:5.15.0.1058.54USN-6766-1
Fixed in:6.5.0.41.41USN-6818-1
linux-image-laptop-23.10Ubuntu
Fixed in:6.5.0.1017.20USN-6818-2
linux-image-lowlatencyUbuntu
Fixed in:5.15.0.106.101USN-6766-1
Fixed in:6.5.0.41.41.1USN-6818-1
linux-image-lowlatency-64kUbuntu
Fixed in:5.15.0.106.101USN-6766-1
Fixed in:6.5.0.41.41.1USN-6818-1
linux-image-lowlatency-64k-hwe-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-1
linux-image-lowlatency-64k-hwe-22.04Ubuntu
Fixed in:6.5.0.41.41.1~22.04.1USN-6818-1
linux-image-lowlatency-hwe-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-1
linux-image-lowlatency-hwe-22.04Ubuntu
Fixed in:6.5.0.41.41.1~22.04.1USN-6818-1
linux-image-nvidiaUbuntu
Fixed in:5.15.0.1054.54USN-6766-1
linux-image-nvidia-6.5Ubuntu
Fixed in:6.5.0.1021.29USN-6818-3
linux-image-nvidia-64k-6.5Ubuntu
Fixed in:6.5.0.1021.29USN-6818-3
linux-image-nvidia-64k-hwe-22.04Ubuntu
Fixed in:6.5.0.1021.29USN-6818-3
linux-image-nvidia-hwe-22.04Ubuntu
Fixed in:6.5.0.1021.29USN-6818-3
linux-image-nvidia-lowlatencyUbuntu
Fixed in:5.15.0.1054.54USN-6766-1
linux-image-oem-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-oem-20.04bUbuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-oem-20.04cUbuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-oem-20.04dUbuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-oem-22.04Ubuntu
Fixed in:6.5.0.1024.26USN-6819-3
linux-image-oem-22.04aUbuntu
Fixed in:6.5.0.1024.26USN-6819-3
linux-image-oem-22.04bUbuntu
Fixed in:6.5.0.1024.26USN-6819-3
linux-image-oem-22.04cUbuntu
Fixed in:6.5.0.1024.26USN-6819-3
linux-image-oem-22.04dUbuntu
Fixed in:6.5.0.1024.26USN-6819-3
linux-image-oracleUbuntu
Fixed in:5.15.0.1059.65~20.04.1USN-6766-1
Fixed in:6.5.0.1024.24~22.04.1USN-6819-4
Fixed in:6.5.0.1024.26USN-6819-2
linux-image-oracle-64kUbuntu
Fixed in:6.5.0.1024.24~22.04.1USN-6819-4
Fixed in:6.5.0.1024.26USN-6819-2
linux-image-oracle-lts-22.04Ubuntu
Fixed in:5.15.0.1059.55USN-6766-1
linux-image-raspiUbuntu
Fixed in:5.15.0.1054.52USN-6766-2
Fixed in:6.5.0.1018.19USN-6818-1
linux-image-raspi-nolpaeUbuntu
Fixed in:5.15.0.1054.52USN-6766-2
Fixed in:6.5.0.1018.19USN-6818-1
linux-image-starfiveUbuntu
Fixed in:6.5.0.1015.16~22.04.1USN-6819-1
Fixed in:6.5.0.1015.17USN-6819-1
linux-image-virtualUbuntu
Fixed in:5.15.0.106.106USN-6766-1
Fixed in:6.5.0.41.41USN-6818-1
linux-image-virtual-hwe-20.04Ubuntu
Fixed in:5.15.0.106.116~20.04.1USN-6766-2
linux-image-virtual-hwe-22.04Ubuntu
Fixed in:6.5.0.41.41~22.04.2USN-6818-4
linux-intel-iotgUbuntu
Fixed in:5.15.0-1057.63USN-6795-1
linux-intel-iotg-5.15Ubuntu
Fixed in:5.15.0-1058.64~20.04.1USN-6828-1
linux-kvmUbuntu
Fixed in:5.15.0-1058.63USN-6766-1
linux-laptopUbuntu
Fixed in:6.5.0-1017.20USN-6818-2
linux-lowlatencyUbuntu
Fixed in:5.15.0-106.116USN-6766-1
Fixed in:6.5.0-41.41.1USN-6818-1
linux-lowlatency-hwe-5.15Ubuntu
Fixed in:5.15.0-106.116~20.04.1USN-6766-1
linux-lowlatency-hwe-6.5Ubuntu
Fixed in:6.5.0-41.41.1~22.04.1USN-6818-1
linux-nvidiaUbuntu
Fixed in:5.15.0-1054.55USN-6766-1
linux-nvidia-6.5Ubuntu
Fixed in:6.5.0-1021.22USN-6818-3
linux-oem-6.5Ubuntu
Fixed in:6.5.0-1024.25USN-6819-3
linux-oracleUbuntu
Fixed in:5.15.0-1059.65USN-6766-1
Fixed in:6.5.0-1024.24USN-6819-2
linux-oracle-5.15Ubuntu
Fixed in:5.15.0-1059.65~20.04.1USN-6766-1
linux-oracle-6.5Ubuntu
Fixed in:6.5.0-1024.24~22.04.1USN-6819-4
linux-raspiUbuntu
Fixed in:5.15.0-1054.57USN-6766-2
Fixed in:6.5.0-1018.21USN-6818-1
linux-starfiveUbuntu
Fixed in:6.5.0-1015.16USN-6819-1
linux-starfive-6.5Ubuntu
Fixed in:6.5.0-1015.16~22.04.1USN-6819-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityHigh
Privileges RequiredLow
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploit Intelligence

0.17%probability of exploitation in 30 days
7thpercentile

Low risk: more likely to be exploited than 7% of all known CVEs.

References

Related Vulnerabilities

Other CWE-362 (Race Condition) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2024-6387High8.1100%-Fix
CVE-2023-36884High7.599%KEV + RansomFix
CVE-2018-15473Medium5.399%-Fix
CVE-2024-27983High8.287%-Fix
CVE-2014-0226Medium6.886%-Fix
CVE-2016-5195High7.084%KEVFix
Embed a live status badge for CVE-2023-52608
CVE-2023-52608 severity badge

Markdown

[![CVE-2023-52608](https://tridentstack.com/cve/badge/CVE-2023-52608.svg)](https://tridentstack.com/cve/CVE-2023-52608)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-52608"><img src="https://tridentstack.com/cve/badge/CVE-2023-52608.svg" alt="CVE-2023-52608"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-02-25.