Login Sign Up

CVE-2023-52764

7.8 HIGH
Denial of Service

📋 TL;DR

This CVE describes a shift-out-of-bounds vulnerability in the Linux kernel's gspca cpia1 camera driver. When the 'sd->params.exposure.gain' variable exceeds integer bit limits during left-shift operations, it can cause kernel instability or crashes. This affects Linux systems using the cpia1 USB camera driver.

💻 Affected Systems

Products:
  • Linux kernel
Versions: Kernel versions with vulnerable cpia1 driver (specific versions not specified in CVE, but patches available for multiple stable branches)
Operating Systems: Linux distributions using affected kernel versions
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects systems with cpia1 USB camera driver loaded/module present. Not all Linux installations use this driver.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, potentially allowing privilege escalation if combined with other vulnerabilities.

🟠

Likely Case

System instability, application crashes, or denial of service affecting camera functionality.

🟢

If Mitigated

Minimal impact with proper input validation and kernel hardening features enabled.

🌐 Internet-Facing: LOW - Requires local access or USB device connection to trigger.
🏢 Internal Only: MEDIUM - Could be exploited by malicious USB devices or local users with camera access.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires local access or ability to connect malicious USB device. Triggered by specific camera parameter manipulation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Multiple stable kernel versions with commits: 099be1822d1f095433f4b08af9cc9d6308ec1953, 09cd8b561aa9796903710a1046957f2b112c8f26, 2eee8edfff90e22980a6b22079d238c3c9d323bb, 69bba62600bd91d6b7c1e8ca181faf8ac64f7060, 8f83c85ee88225319c52680792320c02158c2a9b

Vendor Advisory: https://git.kernel.org/stable/c/099be1822d1f095433f4b08af9cc9d6308ec1953

Restart Required: Yes

Instructions:

1. Update Linux kernel to patched version. 2. For distributions: Use package manager (apt/yum/dnf) to update kernel package. 3. Reboot system after update. 4. Verify kernel version matches patched release.

🔧 Temporary Workarounds

Disable cpia1 kernel module

linux

Prevent loading of vulnerable driver module

echo 'blacklist gspca_cpia1' >> /etc/modprobe.d/blacklist.conf
rmmod gspca_cpia1

Restrict USB device access

linux

Limit which users can access USB camera devices

chmod 600 /dev/video*
setfacl -m u:username:rw /dev/video0

🧯 If You Can't Patch

  • Disable or remove cpia1 USB camera support if not needed
  • Implement strict USB device control policies and monitoring

🔍 How to Verify

Check if Vulnerable:

Check if cpia1 module is loaded: lsmod | grep cpia1 or check kernel version against patched releases

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version includes one of the fix commits: uname -r and check git log for commit IDs

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic messages
  • UBSAN shift-out-of-bounds errors in dmesg
  • Camera driver crash logs

Network Indicators:

  • None - local vulnerability

SIEM Query:

source="kernel" AND ("shift-out-of-bounds" OR "UBSAN" OR "cpia1" OR panic)

📊 Metadata

CVE ID: CVE-2023-52764
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: May 21, 2024
Last Updated: September 23, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-52764, you might also want to check these:

CVE-2019-5684 10.0

This vulnerability in NVIDIA Windows GPU Display Drivers allows specially crafted DirectX shaders to...

Same vulnerability type (CWE-787)
CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2019-5049 10.0

This vulnerability allows an attacker to execute arbitrary code on systems with vulnerable AMD graph...

Same vulnerability type (CWE-787)