CVE-2023-52641

Summary

In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: Add NULL ptr dereference checking at the end of attr_allocate_frame()

It is preferable to exit through the out: label because internal debugging functions are located there.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < ee8db6475cb15c8122855f72ad4cfa5375af6a7baffected
LinuxLinux4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 50545eb6cd5f7ff852a01fa29b7372524ef948ccaffected
LinuxLinux4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 947c3f3d31ea185ddc8e7f198873f17d36deb24caffected
LinuxLinux4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 847b68f58c212f0439c5a8101b3841f32caffccdaffected
LinuxLinux4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < aaab47f204aaf47838241d57bf8662c8840de60aaffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.150 <= 5.15.*unaffected
LinuxLinux6.1.80 <= 6.1.*unaffected
LinuxLinux6.6.19 <= 6.6.*unaffected
LinuxLinux6.7.7 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References