CVE-2023-52511: spi: sun6i: reduce DMA RX transfer width to single byte

Description

In the Linux kernel, the following vulnerability has been resolved:

spi: sun6i: reduce DMA RX transfer width to single byte

Through empirical testing it has been determined that sometimes RX SPI
transfers with DMA enabled return corrupted data. This is down to single
or even multiple bytes lost during DMA transfer from SPI peripheral to
memory. It seems the RX FIFO within the SPI peripheral can become
confused when performing bus read accesses wider than a single byte to it
during an active SPI transfer.

This patch reduces the width of individual DMA read accesses to the
RX FIFO to a single byte to mitigate that issue.

Classification

CVE ID: CVE-2023-52511

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.83% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/ff05ed4ae214011464a0156f05cac1b0b46b5fbc
https://git.kernel.org/stable/c/e15bb292b24630ee832bfc7fd616bd72c7682bbb
https://git.kernel.org/stable/c/b3c21c9c7289692f4019f163c3b06d8bdf78b355
https://git.kernel.org/stable/c/171f8a49f212e87a8b04087568e1b3d132e36a18

Timeline

2024-12-20 00:30:45 UTC
CVE

spi: sun6i: reduce DMA RX transfer width to single byte