CVE-2023-53341

EPSS 0.02%
Veröffentlicht 17.09.2025 14:56:34
Zuletzt bearbeitet 18.09.2025 13:43:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

of/fdt: run soc memory setup when early_init_dt_scan_memory fails

If memory has been found early_init_dt_scan_memory now returns 1. If
it hasn't found any memory it will return 0, allowing other memory
setup mechanisms to carry on.

Previously early_init_dt_scan_memory always returned 0 without
distinguishing between any kind of memory setup being done or not. Any
code path after the early_init_dt_scan memory call in the ramips
plat_mem_setup code wouldn't be executed anymore. Making
early_init_dt_scan_memory the only way to initialize the memory.

Some boards, including my mt7621 based Cudy X6 board, depend on memory
initialization being done via the soc_info.mem_detect function
pointer. Those wouldn't be able to obtain memory and panic the kernel
during early bootup with the message "early_init_dt_alloc_memory_arch:
Failed to allocate 12416 bytes align=0x40".

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 04836fc5b720dfa32ff781383d84f63019abf9b9

Version 1f012283e9360fb4007308f04cfaeb205e34b684

Status affected

Version < c4849f18185fd4e93b04cd45552f8d68c0240e21

Version 1f012283e9360fb4007308f04cfaeb205e34b684

Status affected

Version < 2a12187d5853d9fd5102278cecef7dac7c8ce7ea

Version 1f012283e9360fb4007308f04cfaeb205e34b684

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.17

Status affected

Version < 5.17

Version 0

Status unaffected

Version <= 6.0.*

Version 6.0.19

Status unaffected

Version <= 6.1.*

Version 6.1.5

Status unaffected

Version <= *

Version 6.2

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.043

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/04836fc5b720dfa32ff781383d84f63019abf9b9

https://git.kernel.org/stable/c/c4849f18185fd4e93b04cd45552f8d68c0240e21

https://git.kernel.org/stable/c/2a12187d5853d9fd5102278cecef7dac7c8ce7ea

https://nvd.nist.gov/vuln/detail/CVE-2023-53341

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53341

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53341

EUVD