Lucene search

Redhat.comRH:CVE-2023-52915

HistorySep 06, 2024 - 10:47 a.m.

CVE-2023-52915

2024-09-0610:47:03

redhat.com

access.redhat.com

linux

kernel

vulnerability

media

dvb-usb-v2

af9035

null-ptr-deref

fix

user-controlled

crash

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.3

Confidence

High

EPSS

Percentile

5.1%

JSON

A NULL pointer dereference vulnerability was found in the af9035_i2c_master_xfer function of the dvb-usb-v2 driver in the Linux kernel. This issue occurred because the function did not adequately check the msg[i].buf and msg[i].len fields, allowing a NULL pointer dereference if msg[i].buf was NULL and msg[i].len was zero. The fix introduces a sanity check on msg[i].len to prevent such crashes by ensuring the buffer is valid before accessing its contents.

Mitigation

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

References

bugzilla.redhat.com/show_bug.cgi?id=2310377

lore.kernel.org/linux-cve-announce/2024090653-CVE-2023-52915-21a9@gregkh/T

nvd.nist.gov/vuln/detail/CVE-2023-52915

www.cve.org/CVERecord?id=CVE-2023-52915

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.3

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for RH:CVE-2023-52915