CVE-2023-52491

🗓️ 29 Feb 2024 15:52:09Reported by LinuxType

In the Linux kernel, vulnerability CVE-2023-52491 has been resolved with a fix for a use-after-free bug in media: mtk-jpeg

Reporter	Title	Published	Views	Family All 121
AstraLinux	Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1	3 May 202623:59	–	astralinux
Circl	CVE-2023-52491	3 Dec 202514:14	–	circl
CNNVD	Linux kernel security vulnerabilities	11 Mar 202400:00	–	cnnvd
Cvelist	CVE-2023-52491 media: mtk-jpeg: Fix use after free bug due to error path handling in mtk_jpeg_dec_device_run	29 Feb 202415:52	–	cvelist
Debian	[SECURITY] [DLA 3842-1] linux-5.10 security update	25 Jun 202419:41	–	debian
Debian	[SECURITY] [DSA 5681-1] linux security update	6 May 202418:31	–	debian
Debian CVE	CVE-2023-52491	29 Feb 202415:52	–	debiancve
Tenable Nessus	Debian dla-3842 : linux-config-5.10 - security update	27 Jun 202400:00	–	nessus
Tenable Nessus	Debian dsa-5681 : affs-modules-5.10.0-29-4kc-malta-di - security update	6 May 202400:00	–	nessus
Tenable Nessus	Photon OS 4.0: Linux PHSA-2021-4.0-0065	22 Jul 202100:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange4.12–5.10.210

linux linux_kernelRange5.11–5.15.149

linux linux_kernelRange5.16–6.1.76

linux linux_kernelRange6.2–6.6.15

linux linux_kernelRange6.7–6.7.3

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/media/platform/mediatek/jpeg/mtk_jpeg_core.c"
    ],
    "versions": [
      {
        "version": "b2f0d2724ba477d326e9d654d4db1c93e98f8b93",
        "lessThan": "43872f44eee6c6781fea1348b38885d8e78face9",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b2f0d2724ba477d326e9d654d4db1c93e98f8b93",
        "lessThan": "1b1036c60a37a30caf6759a90fe5ecd06ec35590",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b2f0d2724ba477d326e9d654d4db1c93e98f8b93",
        "lessThan": "9fec4db7fff54d9b0306a332bab31eac47eeb5f6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b2f0d2724ba477d326e9d654d4db1c93e98f8b93",
        "lessThan": "8254d54d00eb6cdb8367399c7f912eb8d354ecd7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b2f0d2724ba477d326e9d654d4db1c93e98f8b93",
        "lessThan": "6e2f37022f0fc0893da4d85a0500c9d547fffd4c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b2f0d2724ba477d326e9d654d4db1c93e98f8b93",
        "lessThan": "206c857dd17d4d026de85866f1b5f0969f2a109e",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/media/platform/mediatek/jpeg/mtk_jpeg_core.c"
    ],
    "versions": [
      {
        "version": "4.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.12",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.210",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.149",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.76",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.15",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.7.3",
        "lessThanOrEqual": "6.7.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.8",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/6e2f37022f0fc0893da4d85a0500c9d547fffd4c
git	www.git.kernel.org/stable/c/206c857dd17d4d026de85866f1b5f0969f2a109e
git	www.git.kernel.org/stable/c/8254d54d00eb6cdb8367399c7f912eb8d354ecd7
git	www.git.kernel.org/stable/c/9fec4db7fff54d9b0306a332bab31eac47eeb5f6
git	www.git.kernel.org/stable/c/1b1036c60a37a30caf6759a90fe5ecd06ec35590
git	www.git.kernel.org/stable/c/43872f44eee6c6781fea1348b38885d8e78face9
lists	www.lists.debian.org/debian-lts-announce/2024/06/msg00017.html

11 May 2026 19:28Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.17.8

EPSS0.00016

SSVC

CWE-416