PT-2023-3458 · Linux+1 · Linux Kernel+1
Publicado
2023-01-27
·
Atualizado
2025-03-07
·
CVE-2023-3359
CVSS v3.1
5.5
Média
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue is related to the
brcm nvram parse() function in the Linux kernel, specifically in the drivers/nvmem/brcm nvram.c file. It is caused by a lack of check for the return value of kzalloc(), which can lead to a NULL pointer dereference. This could allow an attacker to cause a denial of service.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
NULL Pointer Dereference
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Linux Kernel