CVE-2023-52773

MEDIUM

Linux Kernel - NULL Pointer Dereference in amdgpu_dm_i2c_xfer

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer() When ddc_service_construct() is called, it explicitly checks both the link type and whether there is something on the link which will dictate whether the pin is marked as hw_supported. If the pin isn't set or the link is not set (such as from unloading/reloading amdgpu in an IGT test) then fail the amdgpu_dm_i2c_xfer() call.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/fb5c134ca589fe670430acc9e7ebf2691ca2476d

Patch

https://git.kernel.org/stable/c/5b14cf37b9f01de0b28c6f8960019d4c7883ce42

Patch

https://git.kernel.org/stable/c/1d07b7e84276777dad3c8cfebdf8e739606f90c9

Patch

https://git.kernel.org/stable/c/b71f4ade1b8900d30c661d6c27f87c35214c398c

Scores

CVSS v3 5.5

EPSS 0.0024

EPSS Percentile 14.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (11)

Linux/Linux < 6.0

Linux/Linux 22676bc500c27d987a0b42cbe162aebf783f1c38 - 1d07b7e84276777dad3c8cfebdf8e739606f90c9

Linux/Linux 22676bc500c27d987a0b42cbe162aebf783f1c38 - 5b14cf37b9f01de0b28c6f8960019d4c7883ce42

Linux/Linux 22676bc500c27d987a0b42cbe162aebf783f1c38 - b71f4ade1b8900d30c661d6c27f87c35214c398c

Linux/Linux 22676bc500c27d987a0b42cbe162aebf783f1c38 - fb5c134ca589fe670430acc9e7ebf2691ca2476d

Linux/Linux 6.0

Linux/Linux 6.1.64 - 6.1.*

Linux/Linux 6.5.13 - 6.5.*

Linux/Linux 6.6.3 - 6.6.*

Linux/Linux 6.7

... and 1 more

Published May 21, 2024

Tracked Since Feb 18, 2026