Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2023-52647HistoryMay 01, 2024 - 6:15 a.m.
CVE-2023-52647
2024-05-0106:15:06
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
56
cve-2023-52647
linux kernel
media driver
vulnerability
nxp
imx8-isi
crossbar pad
null pad
crash
In the Linux kernel, the following vulnerability has been resolved:
media: nxp: imx8-isi: Check whether crossbar pad is non-NULL before access
When translating source to sink streams in the crossbar subdev, the
driver tries to locate the remote subdev connected to the sink pad. The
remote pad may be NULL, if userspace tries to enable a stream that ends
at an unconnected crossbar sink. When that occurs, the driver
dereferences the NULL pad, leading to a crash.
Prevent the crash by checking if the pad is NULL before using it, and
return an error if it is.
Affected configurations
Node
linuxlinux_kernelRange6.4–6.6.24
ORlinuxlinux_kernelRange6.7.0–6.7.12
ORlinuxlinux_kernelRange6.8.0–6.8.3
ORlinuxlinux_kernelRange6.9.0≥
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/media/platform/nxp/imx8-isi/imx8-isi-crossbar.c"
],
"versions": [
{
"version": "cf21f328fcaf",
"lessThan": "c95318607fbe",
"status": "affected",
"versionType": "git"
},
{
"version": "cf21f328fcaf",
"lessThan": "c4bd29bf5b7f",
"status": "affected",
"versionType": "git"
},
{
"version": "cf21f328fcaf",
"lessThan": "91c8ce42fcde",
"status": "affected",
"versionType": "git"
},
{
"version": "cf21f328fcaf",
"lessThan": "eb2f93210028",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/media/platform/nxp/imx8-isi/imx8-isi-crossbar.c"
],
"versions": [
{
"version": "6.4",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.4",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.24",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.12",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8.3",
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
redhatcve
redhatcve
CVE-2023-52647
2024-05-01 22:23:21
cvelist
cvelist
nvd
nvd
CVE-2023-52647
2024-05-01 06:15:06
ubuntucve
ubuntucve
CVE-2023-52647
2024-05-01 00:00:00
debiancve
debiancve
CVE-2023-52647
2024-05-01 06:15:06
osv
osv
linux-aws, linux-gcp vulnerabilities
2024-06-07 18:49:30
linux-azure, linux-gke vulnerabilities
2024-06-14 17:24:38
linux-oem-6.8 vulnerabilities
2024-06-10 19:28:08
openvas
openvas
Ubuntu: Security Advisory (USN-6817-3)
2024-06-17 00:00:00
Ubuntu: Security Advisory (USN-6817-2)
2024-06-11 00:00:00
Ubuntu: Security Advisory (USN-6816-1)
2024-06-10 00:00:00
nessus
nessus
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6816-1)
2024-06-07 00:00:00
Ubuntu 24.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6817-2)
2024-06-10 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6817-1)
2024-06-07 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-06-07 00:00:00
Linux kernel (OEM) vulnerabilities
2024-06-11 00:00:00
Linux kernel vulnerabilities
2024-06-14 00:00:00