一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4:

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3:

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

10.openEuler-24.03-LTS-Next:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

10.openEuler-24.03-LTS-Next:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 (6.8-rc1) | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

| 影响的包 | 修复版本 | 修复补丁 | 问题引入补丁 | 来源 |

| ------- | -------- | ------- | -------- | --------- |

| linux-azure | | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 | https://git.kernel.org/linus/1ab53a77b772bf7369464a0e4fa6fd6499acf8f1 | ubuntu |

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

4.0

Vector：CVSS：2.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

10.openEuler-24.03-LTS-Next:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 (6.8-rc1) | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

| 影响的包 | 修复版本 | 修复补丁 | 问题引入补丁 | 来源 |

| ------- | -------- | ------- | -------- | --------- |

| linux-azure | | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 | https://git.kernel.org/linus/1ab53a77b772bf7369464a0e4fa6fd6499acf8f1 | ubuntu |

</details>

二、漏洞分析结构反馈

影响性分析说明：

Reserved.

openEuler评分：

4.0

Vector：CVSS：2.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

10.openEuler-24.03-LTS-Next:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

| debian | | https://security-tracker.debian.org/tracker/CVE-2023-52612 |

| cve_search | | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe |

| cve_search | | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 |

| cve_search | | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e |

| cve_search | | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 |

| cve_search | | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 |

| cve_search | | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 |

| cve_search | | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 |

| cve_search | | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 (6.8-rc1) | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2023-52612 | https://ubuntu.com/security/CVE-2023-52612 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

| 影响的包 | 修复版本 | 修复补丁 | 问题引入补丁 | 来源 |

| ------- | -------- | ------- | -------- | --------- |

| linux-azure | | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 | https://git.kernel.org/linus/1ab53a77b772bf7369464a0e4fa6fd6499acf8f1 | ubuntu |

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

4.0

Vector：CVSS：2.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

10.openEuler-24.03-LTS-Next:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

一、漏洞信息

漏洞编号：[CVE-2023-52612](https://nvd.nist.gov/vuln/detail/CVE-2023-52612)

漏洞归属组件：[kernel](https://gitee.com/src-openeuler/kernel)

漏洞归属的版本：4.19.140,4.19.194,4.19.90,5.10.0,6.1.0,6.1.14,6.1.19,6.1.5,6.1.6,6.1.8,6.4.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

In the Linux kernel, the following vulnerability has been resolved:crypto: scomp - fix req->dst buffer overflowThe req->dst buffer size should be checked before copying from thescomp_scratch->dst to avoid req->dst buffer overflow problem.

漏洞公开时间：2024-03-18 19:15:08

漏洞创建时间：2024-03-18 20:31:20

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2023-52612

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | |

| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://www.cve.org/CVERecord?id=CVE-2023-52612 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/1142d65c5b881590962ad763f94505b6dd67d2fe | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4518dc468cdd796757190515a9be7408adc8911e | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/4df0c942d04a67df174195ad8082f6e30e7f71a5 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/71c6670f9f032ec67d8f4e3f8db4646bf5a62883 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/744e1885922a9943458954cfea917b31064b4131 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/7d9e5bed036a7f9e2062a137e97e3c1e77fb8759 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/a5f2f91b3fd7387e5102060809316a0f8f0bc625 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| suse_bugzilla | https://git.kernel.org/stable/c/e0e3f4a18784182cfe34e20c00eca11e78d53e76 | https://bugzilla.suse.com/show_bug.cgi?id=1221616 |

| redhat_bugzilla | https://lore.kernel.org/linux-cve-announce/20240318100758.2828621-12-lee@kernel.org/T | https://bugzilla.redhat.com/show_bug.cgi?id=2270075 |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

| 影响的包 | 修复版本 | 修复补丁 | 问题引入补丁 | 来源 |

| ------- | -------- | ------- | -------- | --------- |

| linux-azure | | https://git.kernel.org/linus/744e1885922a9943458954cfea917b31064b4131 | https://git.kernel.org/linus/1ab53a77b772bf7369464a0e4fa6fd6499acf8f1 | ubuntu |

</details>

二、漏洞分析结构反馈

影响性分析说明：

Reserved.

openEuler评分：

4.0

Vector：CVSS：2.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N

受影响版本排查(受影响/不受影响)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS:

10.openEuler-24.03-LTS-Next:

修复是否涉及abi变化(是/否)：

1.master(6.1.0):

2.openEuler-20.03-LTS-SP1(4.19.90):

3.openEuler-20.03-LTS-SP4(4.19.90):

4.openEuler-22.03-LTS(5.10.0):

5.openEuler-22.03-LTS-Next(5.10.0):

6.openEuler-22.03-LTS-SP1(5.10.0):

7.openEuler-22.03-LTS-SP2(5.10.0):

8.openEuler-22.03-LTS-SP3(5.10.0):

9.openEuler-24.03-LTS: