Lucene search

GoogleOSV:CVE-2023-52844

HistoryMay 21, 2024 - 4:15 p.m.

CVE-2023-52844

2024-05-2116:15:00

Google

osv.dev

linux

kernel

media

vulnerability

vidtv

psi

kstrdup

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

JSON

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: psi: Add check for kstrdup Add check for the return value of kstrdup() and return the error if it fails in order to avoid NULL pointer dereference.

References

git.kernel.org/linus/76a2c5df6ca8bd8ada45e953b8c72b746f42918d

git.kernel.org/stable/c/3387490c89b10aeb4e71d78b65dbc9ba4b2385b9

git.kernel.org/stable/c/5c26aae3723965c291c65dd2ecad6a3240d422b0

git.kernel.org/stable/c/5cfcc8de7d733a1137b86954cc28ce99972311ad

git.kernel.org/stable/c/76a2c5df6ca8bd8ada45e953b8c72b746f42918d

git.kernel.org/stable/c/a51335704a3f90eaf23a6864faefca34b382490a

git.kernel.org/stable/c/d17269fb9161995303985ab2fe6f16cfb72152f9

ubuntu.com/security/CVE-2023-52844

www.cve.org/CVERecord?id=CVE-2023-52844

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

JSON

Related for OSV:CVE-2023-52844