{"id":"CVE-2023-52524","summary":"net: nfc: llcp: Add lock when modifying device list","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: llcp: Add lock when modifying device list\n\nThe device list needs its associated lock held when modifying it, or the\nlist could become corrupted, as syzbot discovered.","modified":"2026-04-11T12:46:32.498830Z","published":"2024-03-02T21:52:30.995Z","related":["SUSE-SU-2024:1320-1","SUSE-SU-2024:1321-1","SUSE-SU-2024:1466-1","SUSE-SU-2024:1480-1","SUSE-SU-2024:1490-1","SUSE-SU-2024:1643-1","SUSE-SU-2024:1646-1","SUSE-SU-2024:1870-1","SUSE-SU-2024:4313-1","SUSE-SU-2024:4317-1","SUSE-SU-2024:4388-1","SUSE-SU-2025:0202-1","SUSE-SU-2025:0230-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52524.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/191d87a19cf1005ecf41e1ae08d74e17379e8391"},{"type":"WEB","url":"https://git.kernel.org/stable/c/29c16c2bf5866326d5fbc4a537b3997fcac23391"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4837a192f6d06d5bb2f3f47d6ce5353ab69bf86b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7562780e32b84196731d57dd24563546fcf6d082"},{"type":"WEB","url":"https://git.kernel.org/stable/c/dba849cc98113b145c6e720122942c00b8012bdb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/dfc7f7a988dad34c3bf4c053124fb26aa6c5f916"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52524.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52524"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"dd6ff3f3862709ab1a12566e73b9d6a9b8f6e548"},{"fixed":"191d87a19cf1005ecf41e1ae08d74e17379e8391"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"96f2c6f272ec04083d828de46285a7d7b17d1aad"},{"fixed":"dba849cc98113b145c6e720122942c00b8012bdb"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"fc8429f8d86801f092fbfbd257c3af821ac0dcd3"},{"fixed":"4837a192f6d06d5bb2f3f47d6ce5353ab69bf86b"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"425d9d3a92df7d96b3cfb7ee5c240293a21cbde3"},{"fixed":"7562780e32b84196731d57dd24563546fcf6d082"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"6709d4b7bc2e079241fdef15d1160581c5261c10"},{"fixed":"29c16c2bf5866326d5fbc4a537b3997fcac23391"},{"fixed":"dfc7f7a988dad34c3bf4c053124fb26aa6c5f916"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"b3ad46e155a6d91b36c6e892019a43e3ef3c696d"},{"last_affected":"e5207c1d69b1a9707615ab6ff9376e59fc096815"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52524.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.4.258"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.198"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.135"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.57"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.5.7"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52524.json"}}],"schema_version":"1.7.5"}