CVE-2023-52841

MEDIUM

Linux Kernel < 5.10.201 - Memory Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: mux: Add check and kfree for kstrdup Add check for the return value of kstrdup() and return the error if it fails in order to avoid NULL pointer dereference. Moreover, use kfree() in the later error handling in order to avoid memory leak.

References (6)

[Patch] https://git.kernel.org/stable/c/1fd6eb12642e0c32692924ff359c07de4b781d78

[Patch] https://git.kernel.org/stable/c/64863ba8e6b7651d994c6e6d506cc8aa2ac45edb

[Patch] https://git.kernel.org/stable/c/980be4c3b0d51c0f873fd750117774561c66cf68

[Patch] https://git.kernel.org/stable/c/a254ee1ddc592ae1efcce96b8c014e1bd2d5a2b4

[Patch] https://git.kernel.org/stable/c/aae7598aff291d4d140be1355aa20930af948785

[Patch] https://git.kernel.org/stable/c/cb13001411999adb158b39e76d94705eb2da100d

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401 CWE-476

Status published

Affected Products (1)

linux/linux_kernel < 5.10.201

Timeline

Published May 21, 2024

Tracked Since Feb 18, 2026