CVE-2023-52571

CVSS v2.0

8.3

High

Vector

AV:N/AC:L/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a refcount leak in the probe function of the rk817 component in the Linux kernel. This leak was identified by the Smatch static checker warning. The problem arises because of node put() was only added in one of the return paths, but it should be added for all return paths that return an error and at driver removal time. This could potentially allow an attacker to cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Authentication

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-401

Related Identifiers

BDU:2024-01934

BDU:2024-02064

CVE-2023-52571

Affected Products

Astra Linux

Linux Kernel

Red Os

CVE-2023-52571

Weakness Enumeration

Related Identifiers

Affected Products

References · 34