6.2
CVE-2023-52844
- EPSS 0.25%
- Veröffentlicht 21.05.2024 16:15:21
- Zuletzt bearbeitet 02.04.2025 14:56:36
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
media: vidtv: psi: Add check for kstrdup
In the Linux kernel, the following vulnerability has been resolved: media: vidtv: psi: Add check for kstrdup Add check for the return value of kstrdup() and return the error if it fails in order to avoid NULL pointer dereference.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.10 < 5.10.201
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.139
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.63
Linux ≫ Linux Kernel Version >= 6.2 < 6.5.12
Linux ≫ Linux Kernel Version >= 6.6 < 6.6.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.162 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 6.2 | 2.5 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://git.kernel.org/stable/c/3387490c89b10aeb4e71d78b65dbc9ba4b2385b9
https://git.kernel.org/stable/c/5c26aae3723965c291c65dd2ecad6a3240d422b0
https://git.kernel.org/stable/c/5cfcc8de7d733a1137b86954cc28ce99972311ad
https://git.kernel.org/stable/c/76a2c5df6ca8bd8ada45e953b8c72b746f42918d
https://git.kernel.org/stable/c/a51335704a3f90eaf23a6864faefca34b382490a
https://git.kernel.org/stable/c/d17269fb9161995303985ab2fe6f16cfb72152f9