CVE-2023-53289

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: bdisp: Add missing check for create_workqueue

Add the check for the return value of the create_workqueue in order to avoid NULL pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < fc1aeafdf6fb0a136c2257000f0d478ee62953feaffected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < 2bfbe3ad371ac5349302833198df14e442622cbcaffected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < c6a315f0b14074ac89723f55b749a557dda0ae2baffected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < 4362444dca02ab44ac844feda3cf6238ef953673affected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < 519b0849401194745ea40f9e07513b870afc1b42affected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < c2e55481731b0e8c96f30f661e430aa884fbd354affected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < eef95a2745cb91559bb03aa111c228fe38deaf64affected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < 0d09ce05724cfb3f5c5136893bec95305c641875affected
LinuxLinux28ffeebbb7bdc0dd7899286b63f3c359d43d0a1a < 2371adeab717d8fe32144a84f3491a03c5838cfbaffected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux4.14.315 <= 4.14.*unaffected
LinuxLinux4.19.283 <= 4.19.*unaffected
LinuxLinux5.4.243 <= 5.4.*unaffected
LinuxLinux5.10.180 <= 5.10.*unaffected
LinuxLinux5.15.111 <= 5.15.*unaffected
LinuxLinux6.1.28 <= 6.1.*unaffected
LinuxLinux6.2.15 <= 6.2.*unaffected
LinuxLinux6.3.2 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References