CVE-2023-52764: media: gspca: cpia1: shift-out-of-bounds in set_flicker

Published May 21, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

media: gspca: cpia1: shift-out-of-bounds in setflicker

Syzkaller reported the following issue: UBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27 shift exponent 245 is too large for 32-bit type 'int'

When the value of the variable "sd->params.exposure.gain" exceeds the number of bits in an integer, a shift-out-of-bounds error is reported. It is triggered because the variable "currentexp" cannot be left-shifted by more than the number of bits in an integer. In order to avoid invalid range during left-shift, the conditional expression is added.

Other sources

In the Linux kernel, the following vulnerability has been resolved:

media: gspca: cpia1: shift-out-of-bounds in setflicker

The Linux kernel CVE team has assigned CVE-2023-52764 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024052148-CVE-2023-52764-fa3b@gregkh/T

Red Hat

Linux Kernel is vulnerable to a denial of service, caused by a shift-out-of-bounds in setflicker. A local authenticated attacker could exploit this vulnerability to cause a denial of service.

IBM

Affected Software

21 affected componentsFixes available
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
redhat/kernel<4.14.331
4.14.331
redhat/kernel<4.19.300
4.19.300
redhat/kernel<5.4.262
5.4.262
redhat/kernel<5.10.202
5.10.202
redhat/kernel<5.15.140
5.15.140
redhat/kernel<6.1.64
6.1.64
redhat/kernel<6.5.13
6.5.13
redhat/kernel<6.6.3
6.6.3
redhat/kernel<6.7
6.7
Linux Linux kernel<4.14.331
Linux Linux kernel>=4.15<4.19.300
Linux Linux kernel>=4.20<5.4.262
Linux Linux kernel>=5.5<5.10.202
Linux Linux kernel>=5.11<5.15.140
Linux Linux kernel>=5.16<6.1.64
Linux Linux kernel>=6.2<6.5.13
Linux Linux kernel>=6.6<6.6.3

Remediation

Patch Available

https://git.kernel.org/stable/c/099be1822d1f095433f4b08af9cc9d6308ec1953

Patch Available

https://git.kernel.org/stable/c/09cd8b561aa9796903710a1046957f2b112c8f26

Patch Available

https://git.kernel.org/stable/c/2eee8edfff90e22980a6b22079d238c3c9d323bb

Patch Available

https://git.kernel.org/stable/c/69bba62600bd91d6b7c1e8ca181faf8ac64f7060

Patch Available

https://git.kernel.org/stable/c/8f83c85ee88225319c52680792320c02158c2a9b

Patch Available

https://git.kernel.org/stable/c/93bddd6529f187f510eec759f37d0569243c9809

Patch Available

https://git.kernel.org/stable/c/a647f27a7426d2fe1b40da7c8fa2b81354a51177

Patch Available

https://git.kernel.org/stable/c/c6b6b8692218da73b33b310d7c1df90f115bdd9a

Patch Available

https://git.kernel.org/stable/c/e2d7149b913d14352c82624e723ce1c211ca06d3

Event History

May 21, 2024
CVE Published
via MITRE·03:30 PM
Data Sourced
via MITRE·03:30 PM
Description
Data Sourced
via NVD·04:15 PM
RemedyDescriptionSeverityWeaknessAffected Software
May 22, 2024
Data Sourced
via Red Hat·09:33 PM
DescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2023-52764?

CVE-2023-52764 is a vulnerability in the Linux kernel categorized as a shift-out-of-bounds issue.

2

How do I fix CVE-2023-52764?

To fix CVE-2023-52764, update the kernel to one of the following versions: 4.14.331, 4.19.300, 5.4.262, 5.10.202, 5.15.140, 6.1.64, 6.5.13, 6.6.3, or 6.7.

3

Which software is affected by CVE-2023-52764?

CVE-2023-52764 affects the Linux kernel and several versions of IBM Security Verify Governance products.

4

What is the impact of CVE-2023-52764 in the kernel?

The impact of CVE-2023-52764 is a potential denial-of-service or possible escalation of privileges due to a shift-out-of-bounds condition.

5

Is CVE-2023-52764 being actively exploited?

As of now, there are no public reports indicating that CVE-2023-52764 is being actively exploited in the wild.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203