CVE-2023-52465

Summary

In the Linux kernel, the following vulnerability has been resolved:

power: supply: Fix null pointer dereference in smb2_probe

devm_kasprintf and devm_kzalloc return a pointer to dynamically allocated memory which can be NULL upon failure.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8648aeb5d7b70e13264ff5f444f22081d37d4670 < e2717302fbc20f148bcda362facee0444b949a3aaffected
LinuxLinux8648aeb5d7b70e13264ff5f444f22081d37d4670 < bd3d2ec447ede9da822addf3960a5f4275e3ae76affected
LinuxLinux8648aeb5d7b70e13264ff5f444f22081d37d4670 < 88f04bc3e737155e13caddf0ba8ed19db87f0212affected
LinuxLinux6.5affected
LinuxLinux0 < 6.5unaffected
LinuxLinux6.6.14 <= 6.6.*unaffected
LinuxLinux6.7.2 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References