CVE-2023-53232— mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-53232
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data The MT7921 driver no longer uses eeprom.data, but the relevant code has not been removed completely since commit 16d98b548365 ("mt76: mt7921: rely on mcu_get_nic_capability"). This could result in potential invalid memory access. To fix the kernel panic issue in mt7921, it is necessary to avoid accessing unallocated eeprom.data which can lead to invalid memory access. Furthermore, it is possible to entirely eliminate the mt7921_mcu_parse_eeprom function and solely depend on mt7921_mcu_parse_response to divide the RxD header. [2.702735] BUG: kernel NULL pointer dereference, address: 0000000000000550 [2.702740] #PF: supervisor write access in kernel mode [2.702741] #PF: error_code(0x0002) - not-present page [2.702743] PGD 0 P4D 0 [2.702747] Oops: 0002 [#1] PREEMPT SMP NOPTI [2.702755] RIP: 0010:mt7921_mcu_parse_response+0x147/0x170 [mt7921_common] [2.702758] RSP: 0018:ffffae7c00fef828 EFLAGS: 00010286 [2.702760] RAX: ffffa367f57be024 RBX: ffffa367cc7bf500 RCX: 0000000000000000 [2.702762] RDX: 0000000000000550 RSI: 0000000000000000 RDI: ffffa367cc7bf500 [2.702763] RBP: ffffae7c00fef840 R08: ffffa367cb167000 R09: 0000000000000005 [2.702764] R10: 0000000000000000 R11: ffffffffc04702e4 R12: ffffa367e8329f40 [2.702766] R13: 0000000000000000 R14: 0000000000000001 R15: ffffa367e8329f40 [2.702768] FS: 000079ee6cf20c40(0000) GS:ffffa36b2f940000(0000) knlGS:0000000000000000 [2.702769] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [2.702775] CR2: 0000000000000550 CR3: 00000001233c6004 CR4: 0000000000770ee0 [2.702776] PKRU: 55555554 [2.702777] Call Trace: [2.702782] mt76_mcu_skb_send_and_get_msg+0xc3/0x11e [mt76 <HASH:1bc4 5>] [2.702785] mt7921_run_firmware+0x241/0x853 [mt7921_common <HASH:6a2f 6>] [2.702789] mt7921e_mcu_init+0x2b/0x56 [mt7921e <HASH:d290 7>] [2.702792] mt7921_register_device+0x2eb/0x5a5 [mt7921_common <HASH:6a2f 6>] [2.702795] ? mt7921_irq_tasklet+0x1d4/0x1d4 [mt7921e <HASH:d290 7>] [2.702797] mt7921_pci_probe+0x2d6/0x319 [mt7921e <HASH:d290 7>] [2.702799] pci_device_probe+0x9f/0x12a
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于访问未分配的eeprom.data,可能导致内核崩溃。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2023-53232
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-53232
请登录查看更多情报信息。
Same Patch Batch · Linux · 2025-09-15 · 210 CVEs total
| CVE-2022-50293 | btrfs: do not BUG_ON() on ENOMEM when dropping extent items for a range | |
| CVE-2023-53231 | erofs: Fix detection of atomic context | |
| CVE-2023-53233 | net/smc: fix deadlock triggered by cancel_delayed_work_syn() | |
| CVE-2023-53234 | watchdog: Fix kmemleak in watchdog_cdev_register | |
| CVE-2023-53235 | drm/tests: helpers: Avoid a driver uaf | |
| CVE-2023-53236 | iommufd: Do not corrupt the pfn list when doing batch carry | |
| CVE-2023-53237 | drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini | |
| CVE-2023-53238 | phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe() | |
| CVE-2023-53239 | drm/msm/mdp5: Add check for kzalloc | |
| CVE-2023-53240 | xsk: check IFF_UP earlier in Tx path | |
| CVE-2023-53241 | nfsd: call op_release, even when op_func returns an error | |
| CVE-2023-53242 | thermal/drivers/hisi: Drop second sensor hi3660 | |
| CVE-2022-50291 | kcm: annotate data-races around kcm->rx_psock | |
| CVE-2022-50292 | drm/msm/dp: fix bridge lifetime | |
| CVE-2022-50303 | drm/amdkfd: Fix double release compute pasid | |
| CVE-2022-50300 | btrfs: fix extent map use-after-free when handling missing device in read_one_chunk | |
| CVE-2022-50301 | iommu/omap: Fix buffer overflow in debugfs | |
| CVE-2022-50302 | lockd: set other missing fields when unlocking files | |
| CVE-2022-50299 | md: Replace snprintf with scnprintf | |
| CVE-2022-50304 | mtd: core: fix possible resource leak in init_mtd() |
Showing top 20 of 210 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
Same vendor: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
V. Comments for CVE-2023-53232
No comments yet