PT-2023-8384 · Linux+10 · Linux Kernel+10

Zhenghan Wang

·

Published

2023-12-21

·

Updated

2025-10-03

·

CVE-2023-6915

CVSS v3.1

6.2

Medium

VectorAV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)
Description A Null pointer dereference problem was found in the ida free() function in the lib/idr.c file of the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return. The problem occurs when the xas load function returns a null value, assigning NULL to the bitmap variable.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2024:2394
ALSA-2024:2950
ALSA-2024:3138
ALT-PU-2024-10855
ALT-PU-2024-1867
ALT-PU-2025-12647
AZL-33550
AZL-34868
BDU:2024-00580
CESA-2024_2950
CESA-2024_3138
CVE-2023-6915
DLA-3841-1
INFSA-2024_2394
INFSA-2024_2950
INFSA-2024_3138
OESA-2024-1142
OESA-2024-1143
OESA-2024-1144
OESA-2024-1145
OPENSUSE-SU-2024_0469-1
OPENSUSE-SU-2024_0515-1
RHSA-2024:2394
RHSA-2024:2950
RHSA-2024:3138
RHSA-2024_2394
RHSA-2024_2950
RHSA-2024_3138
RLSA-2024:2950
RLSA-2024:3138
SUSE-SU-2024:0463-1
SUSE-SU-2024:0469-1
SUSE-SU-2024:0474-1
SUSE-SU-2024:0476-1
SUSE-SU-2024:0478-1
SUSE-SU-2024:0514-1
SUSE-SU-2024:0515-1
SUSE-SU-2024:0516-1
USN-6648-1
USN-6648-2
USN-6650-1
USN-6651-1
USN-6651-2
USN-6651-3
USN-6652-1
USN-6653-1
USN-6653-2
USN-6653-3
USN-6653-4
USN-6740-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu