-

CVE-2023-54315

EPSS 0.05%
Veröffentlicht 30.12.2025 12:23:45
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

powerpc/powernv/sriov: perform null check on iov before dereferencing iov

In the Linux kernel, the following vulnerability has been resolved:

powerpc/powernv/sriov: perform null check on iov before dereferencing iov

Currently pointer iov is being dereferenced before the null check of iov
which can lead to null pointer dereference errors. Fix this by moving the
iov null check before the dereferencing.

Detected using cppcheck static analysis:
linux/arch/powerpc/platforms/powernv/pci-sriov.c:597:12: warning: Either
the condition '!iov' is redundant or there is possible null pointer
dereference: iov. [nullPointerRedundantCheck]
 num_vfs = iov->num_vfs;
           ^

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

CNA 2 VulnDex Vulnerability Enrichment 7

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 052da31d45fc71238ea8bed7e9a84648a1ee0bf3

Version < 07c19c0ad4b07f4b598da369714de028f6a6a323

Status affected

Version 052da31d45fc71238ea8bed7e9a84648a1ee0bf3

Version < d3a0d96c16e5f8d55e2c70163abda3c7c8328106

Status affected

Version 052da31d45fc71238ea8bed7e9a84648a1ee0bf3

Version < d9a1aaea856002cb58dfb7c8d8770400fa1a0299

Status affected

Version 052da31d45fc71238ea8bed7e9a84648a1ee0bf3

Version < 6314465b88072a6b6f3b3c12a7898abe09095f95

Status affected

Version 052da31d45fc71238ea8bed7e9a84648a1ee0bf3

Version < 72990144e17e5e2cb378f1d9b10530b85b9bc382

Status affected

Version 052da31d45fc71238ea8bed7e9a84648a1ee0bf3

Version < f4f913c980bc6abe0ccfe88fe3909c125afe4a2d

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.9

Status affected

Version 0

Version < 5.9

Status unaffected

Version <= 5.10.*

Version 5.10.188

Status unaffected

Version <= 5.15.*

Version 5.15.121

Status unaffected

Version <= 6.1.*

Version 6.1.39

Status unaffected

Version <= 6.3.*

Version 6.3.13

Status unaffected

Version <= 6.4.*

Version 6.4.4

Status unaffected

Version <= *

Version 6.5

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.144

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/07c19c0ad4b07f4b598da369714de028f6a6a323

https://git.kernel.org/stable/c/d3a0d96c16e5f8d55e2c70163abda3c7c8328106

https://git.kernel.org/stable/c/d9a1aaea856002cb58dfb7c8d8770400fa1a0299

https://git.kernel.org/stable/c/6314465b88072a6b6f3b3c12a7898abe09095f95

https://git.kernel.org/stable/c/72990144e17e5e2cb378f1d9b10530b85b9bc382

https://git.kernel.org/stable/c/f4f913c980bc6abe0ccfe88fe3909c125afe4a2d

https://nvd.nist.gov/vuln/detail/CVE-2023-54315

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54315

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54315

EUVD