CVE-2023-53284

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dpu: check for null return of devm_kzalloc() in dpu_writeback_init()

Because of the possilble failure of devm_kzalloc(), dpu_wb_conn might be NULL and will cause null pointer dereference later.

Therefore, it might be better to check it and directly return -ENOMEM.

Patchwork: https://patchwork.freedesktop.org/patch/512277/ [DB: fixed typo in commit message]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux77b001acdcfeb892842caac49fb7f0d286b29c43 < 3723c4dbcd14cc96771000ce0b0540801e6ba059affected
LinuxLinux77b001acdcfeb892842caac49fb7f0d286b29c43 < 5ee51b19855c5dd72aca57b8014f3b70d7798733affected
LinuxLinux77b001acdcfeb892842caac49fb7f0d286b29c43 < 21e9a838f505178e109ccb3bf19d7808eb0326f4affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux6.1.16 <= 6.1.*unaffected
LinuxLinux6.2.3 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References