5.5

CVE-2023-52573

net: rds: Fix possible NULL-pointer dereference

In the Linux kernel, the following vulnerability has been resolved:

net: rds: Fix possible NULL-pointer dereference

In rds_rdma_cm_event_handler_cmn() check, if conn pointer exists
before dereferencing it as rdma_set_service_type() argument

Found by Linux Verification Center (linuxtesting.org) with SVACE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.1 < 5.4.258
LinuxLinux Kernel Version >= 5.5 < 5.10.198
LinuxLinux Kernel Version >= 5.11 < 5.15.134
LinuxLinux Kernel Version >= 5.16 < 6.1.56
LinuxLinux Kernel Version >= 6.2 < 6.5.6
LinuxLinux Kernel Version6.6 Updaterc1
LinuxLinux Kernel Version6.6 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.13
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/069ac51c37a6f07a51f7134d8c34289075786a35
Patch
https://git.kernel.org/stable/c/51fa66024a5eabf270164f2dc82a48ffb35a12e9
Patch
https://git.kernel.org/stable/c/812da2a08dc5cc75fb71e29083ea20904510ac7a
Patch
https://git.kernel.org/stable/c/ea82139e6e3561100d38d14401d57c0ea93fc07e
Patch
https://git.kernel.org/stable/c/f1d95df0f31048f1c59092648997686e3f7d9478
Patch
https://git.kernel.org/stable/c/f515112e833791001aaa8ab886af3ca78503617f
Patch