CVE-2023-52650
Published: May 2, 2024Last modified: May 2, 2024
Description
In the Linux kernel, the following vulnerability has been resolved: drm/tegra: dsi: Add missing check for of_find_device_by_node Add check for the return value of of_find_device_by_node() and return the error if it fails in order to avoid NULL pointer dereference.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.89-r0) |
| Stream | linux-lts | Fixed (6.6.58-r0) |
References
- https://git.kernel.org/stable/c/3169eaf1365541fd8e521091010c44fbe14691fc
- https://git.kernel.org/stable/c/47a13d0b9d8527518639ab5c39667f69d6203e80
- https://git.kernel.org/stable/c/50c0ad785a780c72a2fdaba10b38c645ffb4eae6
- https://git.kernel.org/stable/c/52aa507148c4aad41436e2005d742ffcafad9976
- https://git.kernel.org/stable/c/92003981a6df5dc84af8a5904f8ee112fa324129
- https://git.kernel.org/stable/c/93128052bf832359531c3c0a9e3567b2b8682a2d
- https://git.kernel.org/stable/c/afe6fcb9775882230cd29b529203eabd5d2a638d
- https://git.kernel.org/stable/c/c5d2342d24ef6e08fc90a529fe3dc59de421a2b9
- https://git.kernel.org/stable/c/f05631a8525c3b5e5994ecb1304d2d878956c0f5
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html