-

CVE-2023-52693

EPSS 0.05%
Veröffentlicht 17.05.2024 15:15:20
Zuletzt bearbeitet 21.11.2024 08:40:22
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

ACPI: video: check for error while searching for backlight device parent

If acpi_get_parent() called in acpi_video_dev_register_backlight()
fails, for example, because acpi_ut_acquire_mutex() fails inside
acpi_get_parent), this can lead to incorrect (uninitialized)
acpi_parent handle being passed to acpi_get_pci_dev() for detecting
the parent pci device.

Check acpi_get_parent() result and set parent device only in case of success.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 13

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 556f02699d33c1f40b1b31bd25828ce08fa165d8

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < 1e3a2b9b4039bb4d136dca59fb31e06465e056f3

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < c4e1a0ef0b4782854c9b77a333ca912b392bed2f

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < 3a370502a5681986f9828e43be75ce26c6ab24af

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < 2124c5bc22948fc4d09a23db4a8acdccc7d21e95

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < 39af144b6d01d9b40f52e5d773e653957e6c379c

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < 72884ce4e10417b1233b614bf134da852df0f15f

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

Version < ccd45faf4973746c4f30ea41eec864e5cf191099

Version 9661e92c10a9775243c1ecb73373528ed8725a10

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.39

Status affected

Version < 2.6.39

Version 0

Status unaffected

Version <= 4.19.*

Version 4.19.306

Status unaffected

Version <= 5.4.*

Version 5.4.268

Status unaffected

Version <= 5.10.*

Version 5.10.209

Status unaffected

Version <= 5.15.*

Version 5.15.148

Status unaffected

Version <= 6.1.*

Version 6.1.75

Status unaffected

Version <= 6.6.*

Version 6.6.14

Status unaffected

Version <= 6.7.*

Version 6.7.2

Status unaffected

Version <= *

Version 6.8

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.153

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html

https://git.kernel.org/stable/c/1e3a2b9b4039bb4d136dca59fb31e06465e056f3

https://git.kernel.org/stable/c/2124c5bc22948fc4d09a23db4a8acdccc7d21e95

https://git.kernel.org/stable/c/39af144b6d01d9b40f52e5d773e653957e6c379c

https://git.kernel.org/stable/c/3a370502a5681986f9828e43be75ce26c6ab24af

https://git.kernel.org/stable/c/556f02699d33c1f40b1b31bd25828ce08fa165d8

https://git.kernel.org/stable/c/72884ce4e10417b1233b614bf134da852df0f15f

https://git.kernel.org/stable/c/c4e1a0ef0b4782854c9b77a333ca912b392bed2f

https://git.kernel.org/stable/c/ccd45faf4973746c4f30ea41eec864e5cf191099

https://nvd.nist.gov/vuln/detail/CVE-2023-52693

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-52693

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-52693

EUVD