5.5
CVE-2023-53472
- EPSS 0.02%
- Veröffentlicht 01.10.2025 12:15:49
- Zuletzt bearbeitet 20.01.2026 17:03:13
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
pwm: lpc32xx: Remove handling of PWM channels
In the Linux kernel, the following vulnerability has been resolved: pwm: lpc32xx: Remove handling of PWM channels Because LPC32xx PWM controllers have only a single output which is registered as the only PWM device/channel per controller, it is known in advance that pwm->hwpwm value is always 0. On basis of this fact simplify the code by removing operations with pwm->hwpwm, there is no controls which require channel number as input. Even though I wasn't aware at the time when I forward ported that patch, this fixes a null pointer dereference as lpc32xx->chip.pwms is NULL before devm_pwmchip_add() is called.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 4.9.284 < 4.10
Linux ≫ Linux Kernel Version >= 4.14.248 < 4.14.326
Linux ≫ Linux Kernel Version >= 4.19.208 < 4.19.295
Linux ≫ Linux Kernel Version >= 5.4.149 < 5.4.257
Linux ≫ Linux Kernel Version >= 5.10.69 < 5.10.195
Linux ≫ Linux Kernel Version >= 5.14.8 < 5.15.132
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.54
Linux ≫ Linux Kernel Version >= 6.2 < 6.5.4
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.042 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.