5.5

CVE-2023-52865

clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data

In the Linux kernel, the following vulnerability has been resolved:

clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data

Add the check for the return value of mtk_alloc_clk_data() in order to
avoid NULL pointer dereference.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.12 < 4.14.330
LinuxLinux Kernel Version >= 4.15 < 4.19.299
LinuxLinux Kernel Version >= 4.20 < 5.4.261
LinuxLinux Kernel Version >= 5.5 < 5.10.201
LinuxLinux Kernel Version >= 5.11 < 5.15.139
LinuxLinux Kernel Version >= 5.16 < 6.1.63
LinuxLinux Kernel Version >= 6.2 < 6.5.12
LinuxLinux Kernel Version >= 6.6 < 6.6.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.154
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/122ac6496e4975ddd7ec1edba4f6fc1e15e39478
Patch
https://git.kernel.org/stable/c/2705c5b97f504e831ae1935c05f0e44f80dfa6b3
Patch
https://git.kernel.org/stable/c/357df1c2f6ace96defd557fad709ed1f9f70e16c
Patch
https://git.kernel.org/stable/c/3aefc6fcfbada57fac27f470602d5565e5b76cb4
Patch
https://git.kernel.org/stable/c/4c79cbfb8e9e2311be77182893fda5ea4068c836
Patch
https://git.kernel.org/stable/c/606f6366a35a3329545e38129804d65ef26ed7d2
Patch
https://git.kernel.org/stable/c/81b16286110728674dcf81137be0687c5055e7bf
Patch
https://git.kernel.org/stable/c/be3f12f16038a558f08fa93cc32fa715746a5235
Patch
https://git.kernel.org/stable/c/c26feedbc561f2a3cee1a4f717e61bdbdfb4fa92
Patch