Vulnerability Description
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver().
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ofono Project | Ofono | < 2.5 |
| Fedoraproject | Fedora | 39 |
Related Weaknesses (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=2255387ExploitIssue TrackingThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2255387ExploitIssue TrackingThird Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]
FAQ
What is CVE-2023-2794?
CVE-2023-2794 is a vulnerability with a CVSS score of 8.1 (HIGH). A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver() function during the SMS decoding. It is assumed that the attack scenario is ...
How severe is CVE-2023-2794?
CVE-2023-2794 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-2794?
Check the references section above for vendor advisories and patch information. Affected products include: Ofono Project Ofono, Fedoraproject Fedora.