4.1
CVE-2023-52870
- EPSS 0.22%
- Veröffentlicht 21.05.2024 16:15:23
- Zuletzt bearbeitet 02.04.2025 15:18:02
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
clk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data
In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data Add the check for the return value of mtk_alloc_clk_data() in order to avoid NULL pointer dereference.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.8 < 5.10.201
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.139
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.63
Linux ≫ Linux Kernel Version >= 6.2 < 6.5.12
Linux ≫ Linux Kernel Version >= 6.6 < 6.6.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.22% | 0.12 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 4.1 | 0.5 | 3.6 |
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://git.kernel.org/stable/c/10cc81124407d862f0f747db4baa9c006510b480
https://git.kernel.org/stable/c/2617aa8ceaf30e41d3eb7f5fef3445542bef193a
https://git.kernel.org/stable/c/533ca5153ad6c7b7d47ae0114b14d0333964b946
https://git.kernel.org/stable/c/b5ff3e89b4e7f46ad2aa0de7e08d18e6f87d71bc
https://git.kernel.org/stable/c/b82681042724924ae3ba0f2f2eeec217fa31e830
https://git.kernel.org/stable/c/dd1f30d68fa98eb672c0a259297b761656a9025f