CVE-2023-52918

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: pci: cx23885: check cx23885_vdev_init() return

cx23885_vdev_init() can return a NULL pointer, but that pointer is used in the next line without a check.

Add a NULL pointer check and go to the error unwind if it is NULL.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < 8e31b096e2e1949bc8f0be019c9ae70d414404c6affected
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < 199a42fc4c45e8b7f19efeb15dbc36889a599ac2affected
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < e7385510e2550a9f8b6f3d5f33c5b894ab9ba976affected
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < a5f1d30c51c485cec7a7de60205667c3ff86c303affected
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < 06ee04a907d64ee3910fecedd05d7f1be4b1b70eaffected
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < b1397fb4a779fca560c43d2acf6702d41b4a495baffected
LinuxLinuxe47f30b140333525ea682ec672641b470da1e599 < 15126b916e39b0cb67026b0af3c014bfeb1f76b3affected
LinuxLinux2.6.25affected
LinuxLinux0 < 2.6.25unaffected
LinuxLinux4.19.321 <= 4.19.*unaffected
LinuxLinux5.4.283 <= 5.4.*unaffected
LinuxLinux5.10.225 <= 5.10.*unaffected
LinuxLinux5.15.166 <= 5.15.*unaffected
LinuxLinux6.1.107 <= 6.1.*unaffected
LinuxLinux6.6.48 <= 6.6.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References