CVE-2023-52502: 
Linux Kernel vulnerability analysis and mitigation

CVE-2023-52502 is a vulnerability in the Linux kernel's NFC (Near Field Communication) subsystem, specifically affecting the LLCP (Logical Link Control Protocol) socket handling. The vulnerability was discovered by Sili Luo and reported in October 2023. The issue involves race conditions in the nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() functions that could lead to a Use-After-Free (UAF) vulnerability (Kernel Git).

The vulnerability stems from a race condition where a reference to a socket found during lookup was not properly handled while holding a lock. Specifically, the issue occurs in the Linux kernel's NFC subsystem where the socket reference counting in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() functions was performed after releasing the lock, creating a potential Use-After-Free condition. The CVSS v3.1 base score is 6.3 (Medium) with vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H (NVD).

The vulnerability could allow an attacker to potentially cause a Use-After-Free condition in the kernel's NFC subsystem. This could lead to high confidentiality and availability impacts, though no integrity impact has been identified. The vulnerability requires local access and high complexity to exploit (NVD).

The vulnerability has been patched in the Linux kernel by modifying the nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() functions to properly handle socket references while holding the lock. The fix ensures that socket reference counting is performed before releasing the lock and adds proper socket cleanup in nfc_llcp_recv_snl(). Users should update their Linux kernel to a version containing the fix (Kernel Git).