CVE-2023-54319

CVSS v2.0

5.2

Medium

Vector

AV:A/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the pinctrl subsystem, specifically within the at91-pio4 driver. The devm kasprintf() function, used for dynamic memory allocation, may return a NULL pointer if allocation fails. The code does not validate this pointer before use, potentially leading to issues. The issue was identified using the coccinelle tool with the kmerr.cocci script. This flaw is related to previous commits addressing memory leaks and format specifier issues.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Unchecked Return Value

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-252

Related Identifiers

BDU:2026-01169

CVE-2023-54319

SUSE-SU-2026:0263-1

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

At91-Pio4

CVE-2023-54319

Weakness Enumeration

Related Identifiers

Affected Products

References · 2195