CVE-2023-52616

crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init

References

Notes

 carnil> Introduced in d58bb7e55a8a ("lib/mpi: Introduce ec implementation to MPI
 carnil> library"). Vulnerable versions: 5.10-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.210) [0c3687822259a7628c85cd21a3445cbe3c367165]
6.1-bookworm-security released (6.1.82-1)
6.1-upstream-stable released (6.1.79) [bb44477d4506e52785693a39f03cdc6a2c5e8598]
6.6-upstream-stable released (6.6.15) [7ebf812b7019fd2d4d5a7ca45ef4bf3a6f4bda0a]
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.6.15-1)
upstream released (6.8-rc1) [ba3c5574203034781ac4231acf117da917efcd2a]