Lucene search

Ubuntu.comUB:CVE-2023-52773

HistoryMay 21, 2024 - 12:00 a.m.

CVE-2023-52773

2024-05-2100:00:00

ubuntu.com

linux kernel

amd display

vulnerability

null pointer

ddc_service_construct

amdgpu_dm_i2c_xfer

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()
When ddc_service_construct() is called, it explicitly checks both the link
type and whether there is something on the link which will dictate whether
the pin is marked as hw_supported. If the pin isn’t set or the link is not
set (such as from unloading/reloading amdgpu in an IGT test) then fail the
amdgpu_dm_i2c_xfer() call.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux< anyUNKNOWN
ubuntu22.04noarchlinux< anyUNKNOWN
ubuntu23.10noarchlinux< anyUNKNOWN
ubuntu24.04noarchlinux< anyUNKNOWN
ubuntu14.04noarchlinux< anyUNKNOWN
ubuntu16.04noarchlinux< anyUNKNOWN
ubuntu18.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws< anyUNKNOWN
ubuntu22.04noarchlinux-aws< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< any	UNKNOWN
ubuntu	20.04	noarch	linux	< any	UNKNOWN
ubuntu	22.04	noarch	linux	< any	UNKNOWN
ubuntu	23.10	noarch	linux	< any	UNKNOWN
ubuntu	24.04	noarch	linux	< any	UNKNOWN
ubuntu	14.04	noarch	linux	< any	UNKNOWN
ubuntu	16.04	noarch	linux	< any	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< any	UNKNOWN

Rows per page:

1-10 of 951

References

git.kernel.org/linus/b71f4ade1b8900d30c661d6c27f87c35214c398c (6.7-rc2)

git.kernel.org/stable/c/1d07b7e84276777dad3c8cfebdf8e739606f90c9

git.kernel.org/stable/c/5b14cf37b9f01de0b28c6f8960019d4c7883ce42

git.kernel.org/stable/c/b71f4ade1b8900d30c661d6c27f87c35214c398c

git.kernel.org/stable/c/fb5c134ca589fe670430acc9e7ebf2691ca2476d

launchpad.net/bugs/cve/CVE-2023-52773

nvd.nist.gov/vuln/detail/CVE-2023-52773

security-tracker.debian.org/tracker/CVE-2023-52773

www.cve.org/CVERecord?id=CVE-2023-52773

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for UB:CVE-2023-52773