CVE-2023-53239

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/mdp5: Add check for kzalloc

As kzalloc may fail and return NULL pointer, it should be better to check the return value in order to avoid the NULL pointer dereference.

Patchwork: https://patchwork.freedesktop.org/patch/514154/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1cff7440a86e04a613665803b42034c467f035fa < 3975ea6eaffe26aec634b5c473e51dc76e73af62affected
LinuxLinux1cff7440a86e04a613665803b42034c467f035fa < 49907c8873826ee771ba0ca1629e809c6479f617affected
LinuxLinux1cff7440a86e04a613665803b42034c467f035fa < 82943a0730e00c14b03e25a4b2a1a9477ae89d7baffected
LinuxLinux1cff7440a86e04a613665803b42034c467f035fa < bc579a2ee8b2e20c152b24b437d094832d8c9c9eaffected
LinuxLinux1cff7440a86e04a613665803b42034c467f035fa < 37ff771ed008b9cbffd0eab77985968364694ce3affected
LinuxLinux1cff7440a86e04a613665803b42034c467f035fa < 13fcfcb2a9a4787fe4e49841d728f6f2e9fa6911affected
LinuxLinux5.3affected
LinuxLinux0 < 5.3unaffected
LinuxLinux5.4.235 <= 5.4.*unaffected
LinuxLinux5.10.173 <= 5.10.*unaffected
LinuxLinux5.15.99 <= 5.15.*unaffected
LinuxLinux6.1.16 <= 6.1.*unaffected
LinuxLinux6.2.3 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References