CVE-2023-52861
6.2
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm: bridge: it66121: Fix invalid connector dereference
Fix the NULL pointer dereference when no monitor is connected, and the sound card is opened from userspace.
Instead return an empty buffer (of zeroes) as the EDID information to the sound framework if there is no connector attached.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | e0fd83dbe92426e4f09b01111d260d2a7dc72fdb < 2c80c4f0d2845645f41cbb7c9304c8efbdbd4331 | affected |
| Linux | Linux | e0fd83dbe92426e4f09b01111d260d2a7dc72fdb < 1669d7b21a664aa531856ce85b01359a376baebc | affected |
| Linux | Linux | e0fd83dbe92426e4f09b01111d260d2a7dc72fdb < 1374561a7cbc9a000b77bb0473bb2c19daf18d86 | affected |
| Linux | Linux | e0fd83dbe92426e4f09b01111d260d2a7dc72fdb < d0375f6858c4ff7244b62b02eb5e93428e1916cd | affected |
| Linux | Linux | 5.19 | affected |
| Linux | Linux | 0 < 5.19 | unaffected |
| Linux | Linux | 6.1.63 <= 6.1.* | unaffected |
| Linux | Linux | 6.5.12 <= 6.5.* | unaffected |
| Linux | Linux | 6.6.2 <= 6.6.* | unaffected |
| Linux | Linux | 6.7 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/2c80c4f0d2845645f41cbb7c9304c8efbdbd4331
- https://git.kernel.org/stable/c/1669d7b21a664aa531856ce85b01359a376baebc
- https://git.kernel.org/stable/c/1374561a7cbc9a000b77bb0473bb2c19daf18d86
- https://git.kernel.org/stable/c/d0375f6858c4ff7244b62b02eb5e93428e1916cd
References
- https://git.kernel.org/stable/c/2c80c4f0d2845645f41cbb7c9304c8efbdbd4331
- https://git.kernel.org/stable/c/1669d7b21a664aa531856ce85b01359a376baebc
- https://git.kernel.org/stable/c/1374561a7cbc9a000b77bb0473bb2c19daf18d86
- https://git.kernel.org/stable/c/d0375f6858c4ff7244b62b02eb5e93428e1916cd
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.