Lucene search
Redhat.comRH:CVE-2023-52510HistoryMar 04, 2024 - 7:20 p.m.
CVE-2023-52510
2024-03-0419:20:14
redhat.com
access.redhat.com
8
linux kernel
vulnerability
cve-2023-52510
ieee802154
ca8210
uaf
use-after-free
clk_unregister
is_err_or_null
In the Linux kernel, the following vulnerability has been resolved: ieee802154: ca8210: Fix a potential UAF in ca8210_probe If of_clk_add_provider() fails in ca8210_register_ext_clock(), it calls clk_unregister() to release priv->clk and returns an error. However, the caller ca8210_probe() then calls ca8210_remove(), where priv->clk is freed again in ca8210_unregister_ext_clock(). In this case, a use-after-free may happen in the second time we call clk_unregister(). Fix this by removing the first clk_unregister(). Also, priv->clk could be an error code on failure of clk_register_fixed_rate(). Use IS_ERR_OR_NULL to catch this case in ca8210_unregister_ext_clock().
Related
prion
prion
Spoofing
2024-03-02 22:15:00
cve
cve
CVE-2023-52510
2024-03-02 22:15:47
ubuntucve
ubuntucve
CVE-2023-52510
2024-03-02 00:00:00
cvelist
cvelist
CVE-2023-52510 ieee802154: ca8210: Fix a potential UAF in ca8210_probe
2024-03-02 21:52:22
nvd
nvd
CVE-2023-52510
2024-03-02 22:15:47
debiancve
debiancve
CVE-2023-52510
2024-03-02 22:15:47
vulnrichment
vulnrichment
CVE-2023-52510 ieee802154: ca8210: Fix a potential UAF in ca8210_probe
2024-03-02 21:52:22
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1320-1)
2024-04-19 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1321-1)
2024-04-19 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1332-1)
2024-04-23 00:00:00
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1321-1)
2024-04-18 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:1480-1)
2024-05-01 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:1466-1)
2024-04-30 00:00:00