6.2

CVE-2023-52844

media: vidtv: psi: Add check for kstrdup

In the Linux kernel, the following vulnerability has been resolved:

media: vidtv: psi: Add check for kstrdup

Add check for the return value of kstrdup() and return the error
if it fails in order to avoid NULL pointer dereference.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.10 < 5.10.201
LinuxLinux Kernel Version >= 5.11 < 5.15.139
LinuxLinux Kernel Version >= 5.16 < 6.1.63
LinuxLinux Kernel Version >= 6.2 < 6.5.12
LinuxLinux Kernel Version >= 6.6 < 6.6.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.162
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.2 2.5 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/3387490c89b10aeb4e71d78b65dbc9ba4b2385b9
Patch
https://git.kernel.org/stable/c/5c26aae3723965c291c65dd2ecad6a3240d422b0
Patch
https://git.kernel.org/stable/c/5cfcc8de7d733a1137b86954cc28ce99972311ad
Patch
https://git.kernel.org/stable/c/76a2c5df6ca8bd8ada45e953b8c72b746f42918d
Patch
https://git.kernel.org/stable/c/a51335704a3f90eaf23a6864faefca34b382490a
Patch
https://git.kernel.org/stable/c/d17269fb9161995303985ab2fe6f16cfb72152f9
Patch