Lucene search

K
vulnrichmentLinuxVULNRICHMENT:CVE-2023-52861
HistoryMay 21, 2024 - 3:31 p.m.

CVE-2023-52861 drm: bridge: it66121: Fix invalid connector dereference

2024-05-2115:31:53
Linux
github.com
linux kernel
vulnerability
fix
null pointer
it66121
connector
dereference
patch
edid
sound framework

AI Score

6.9

Confidence

Low

EPSS

0

Percentile

15.5%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

In the Linux kernel, the following vulnerability has been resolved:

drm: bridge: it66121: Fix invalid connector dereference

Fix the NULL pointer dereference when no monitor is connected, and the
sound card is opened from userspace.

Instead return an empty buffer (of zeroes) as the EDID information to
the sound framework if there is no connector attached.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/bridge/ite-it66121.c"
    ],
    "versions": [
      {
        "version": "e0fd83dbe924",
        "lessThan": "2c80c4f0d284",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e0fd83dbe924",
        "lessThan": "1669d7b21a66",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e0fd83dbe924",
        "lessThan": "1374561a7cbc",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e0fd83dbe924",
        "lessThan": "d0375f6858c4",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/bridge/ite-it66121.c"
    ],
    "versions": [
      {
        "version": "5.19",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.19",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.63",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.5.12",
        "lessThanOrEqual": "6.5.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.2",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.7",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

AI Score

6.9

Confidence

Low

EPSS

0

Percentile

15.5%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

Related for VULNRICHMENT:CVE-2023-52861