CVE-2023-52788
Severity CVSS v4.0:
Pending analysis
Type:
CWE-476
NULL Pointer Dereference
Publication date:
21/05/2024
Last modified:
31/01/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
i915/perf: Fix NULL deref bugs with drm_dbg() calls<br />
<br />
When i915 perf interface is not available dereferencing it will lead to<br />
NULL dereferences.<br />
<br />
As returning -ENOTSUPP is pretty clear return when perf interface is not<br />
available.<br />
<br />
[tursulin: added stable tag]<br />
(cherry picked from commit 36f27350ff745bd228ab04d7845dfbffc177a889)
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.15.108 (including) | 5.15.140 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.0 (including) | 6.1.64 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.5.13 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.6 (including) | 6.6.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/10f49cdfd5fb342a1a9641930dc040c570694e98
- https://git.kernel.org/stable/c/1566e8be73fd5fa424e88d2a4cffdc34f970f0e1
- https://git.kernel.org/stable/c/471aa951bf1206d3c10d0daa67005b8e4db4ff83
- https://git.kernel.org/stable/c/55db76caa782baa4a1bf02296e2773c38a524a3e
- https://git.kernel.org/stable/c/bf8e105030083e7b71591cdf437e464bcd8a0c09
- https://git.kernel.org/stable/c/10f49cdfd5fb342a1a9641930dc040c570694e98
- https://git.kernel.org/stable/c/1566e8be73fd5fa424e88d2a4cffdc34f970f0e1
- https://git.kernel.org/stable/c/471aa951bf1206d3c10d0daa67005b8e4db4ff83
- https://git.kernel.org/stable/c/55db76caa782baa4a1bf02296e2773c38a524a3e
- https://git.kernel.org/stable/c/bf8e105030083e7b71591cdf437e464bcd8a0c09