PT-2023-8714 · Linux+7 · Linux Kernel+7

Kunwu Chan

·

Publicado

2023-12-07

·

Atualizado

2025-09-29

·

CVE-2023-52467

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a null pointer dereference in the of syscon register() function of the Linux kernel's MFD driver. This can be exploited to cause a denial of service. The kasprintf() function returns a pointer to dynamically allocated memory, which can be NULL upon failure.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-17576
BDU:2024-01667
CVE-2023-52467
DLA-3841-1
INFSA-2024_9315
OESA-2024-1394
OESA-2024-1395
OESA-2024-1396
OESA-2024-1397
OPENSUSE-SU-2024_1322-1
OPENSUSE-SU-2024_1322-2
OPENSUSE-SU-2024_1466-1
OPENSUSE-SU-2024_1480-1
RHSA-2024:9315
RHSA-2024_9315
SUSE-SU-2024:0855-1
SUSE-SU-2024:0900-1
SUSE-SU-2024:0900-2
SUSE-SU-2024:0977-1
SUSE-SU-2024:1466-1
SUSE-SU-2024:1480-1
USN-6688-1
USN-6725-1
USN-6725-2
USN-6765-1
USN-6818-1
USN-6818-2
USN-6818-3
USN-6818-4
USN-6819-1
USN-6819-2
USN-6819-3
USN-6819-4

Produtos afetados

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu