CVE-2023-52919
📋 TL;DR
A NULL pointer dereference vulnerability exists in the Linux kernel's NFC (Near Field Communication) subsystem. If memory allocation fails in the send_acknowledge() function, an uninitialized pointer could be dereferenced, causing a kernel panic or system crash. This affects systems with NFC hardware and the nci module loaded.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to system crash and denial of service, potentially disrupting critical services on affected devices.
Likely Case
System crash or instability when NFC operations encounter memory pressure, requiring reboot to restore functionality.
If Mitigated
Minimal impact if NFC is disabled or the nci module isn't loaded; system continues normal operation.
🎯 Exploit Status
Requires local access to trigger memory allocation failure in specific NFC operations; not trivial to exploit reliably.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Check kernel commits: 2b2edf089df3a69f0072c6e71563394c5a94e62e and others listed
Vendor Advisory: https://git.kernel.org/stable/c/2b2edf089df3a69f0072c6e71563394c5a94e62e
Restart Required: Yes
Instructions:
1. Update Linux kernel to patched version from your distribution. 2. Reboot system to load new kernel. 3. Verify nci module loads without errors.
🔧 Temporary Workarounds
Disable NFC module
linuxPrevent loading of the vulnerable nci module if NFC is not needed
echo 'blacklist nci' >> /etc/modprobe.d/blacklist-nci.conf
rmmod nci
🧯 If You Can't Patch
- Ensure NFC hardware is disabled in BIOS/UEFI if not required
- Monitor system logs for kernel panic events related to NFC operations
🔍 How to Verify
Check if Vulnerable:
Check if nci module is loaded: lsmod | grep nci. If loaded and kernel version is unpatched, system may be vulnerable.Check Version:
uname -rVerify Fix Applied:
Verify kernel version includes fix commits: uname -r and check against patched versions. Test NFC functionality if required.📡 Detection & Monitoring
Log Indicators:
- Kernel panic messages in /var/log/kern.log or dmesg
- NULL pointer dereference errors mentioning nci or send_acknowledge
Network Indicators:
- None - this is a local kernel vulnerability
SIEM Query:
source="kernel" AND ("NULL pointer dereference" OR "kernel panic") AND ("nci" OR "send_acknowledge")🔗 References
- https://git.kernel.org/stable/c/2b2edf089df3a69f0072c6e71563394c5a94e62e
- https://git.kernel.org/stable/c/5622592f8f74ae3e594379af02e64ea84772d0dd
- https://git.kernel.org/stable/c/76050b0cc5a72e0c7493287b7e18e1cb9e3c4612
- https://git.kernel.org/stable/c/7937609cd387246aed994e81aa4fa951358fba41
- https://git.kernel.org/stable/c/bb6cacc439ddd2cd51227ab193f4f91cfc7f014f
- https://git.kernel.org/stable/c/c95fa5b20fe03609e0894656fa43c18045b5097e
- https://git.kernel.org/stable/c/d7dbdbe3800a908eecd4975c31be47dd45e2104a
- https://git.kernel.org/stable/c/ffdc881f68073ff86bf21afb9bb954812e8278be
