CVE-2023-52565: media: uvcvideo: Fix OOB read
Description
In the Linux kernel, the following vulnerability has been resolved:
media: uvcvideo: Fix OOB read
If the index provided by the user is bigger than the mask size, we might do
an out of bound read.
Classification
CVE ID: CVE-2023-52565
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 5.06% (scored less or equal to compared to others)
EPSS Date: 2025-02-03 (when was this score calculated)
References
https://git.kernel.org/stable/c/09635bf4cdd4adf2160198a6041bcc7ca46c0558https://git.kernel.org/stable/c/8bcf70d787f7d53a3b85ad394f926cfef3eed023
https://git.kernel.org/stable/c/41ebaa5e0eebea4c3bac96b72f9f8ae0d77c0bdb