5.5
CVE-2023-52661
- EPSS 0.22%
- Veröffentlicht 17.05.2024 14:15:08
- Zuletzt bearbeitet 19.09.2025 14:19:01
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe()
In the Linux kernel, the following vulnerability has been resolved: drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe() If clk_get_sys(..., "pll_d2_out0") fails, the clk_get_sys() call must be undone. Add the missing clk_put and a new 'put_pll_d_out0' label in the error handling path, and use it.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.17 < 6.1.83
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.23
Linux ≫ Linux Kernel Version >= 6.7 < 6.7.11
Linux ≫ Linux Kernel Version >= 6.8 < 6.8.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.22% | 0.126 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/2388c36e028fff7f8ffd515681a14c6c2c07fea7
https://git.kernel.org/stable/c/45c8034db47842b25a3ab6139d71e13b4e67b9b3
https://git.kernel.org/stable/c/5c8dc26e31b8b410ad1895e0d314def50c76eed0
https://git.kernel.org/stable/c/845322a9c06dd1dcf35b6c4e3af89684297c23cc
https://git.kernel.org/stable/c/f3f407ccbe84a34de9be3195d22cdd5969f3fd9f
https://git.kernel.org/stable/c/fa74e4f5d0821829545b9f7034a0e577c205c101