CVE-2023-52844

MEDIUM

Linux Kernel 5.10-5.10.201 - NULL Pointer Dereference in vidtv PSI kstrdup Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: psi: Add check for kstrdup Add check for the return value of kstrdup() and return the error if it fails in order to avoid NULL pointer dereference.

References (6)

Core 6

Core References

Patch

https://git.kernel.org/stable/c/3387490c89b10aeb4e71d78b65dbc9ba4b2385b9

Patch

https://git.kernel.org/stable/c/d17269fb9161995303985ab2fe6f16cfb72152f9

Patch

https://git.kernel.org/stable/c/5c26aae3723965c291c65dd2ecad6a3240d422b0

Patch

https://git.kernel.org/stable/c/5cfcc8de7d733a1137b86954cc28ce99972311ad

Patch

https://git.kernel.org/stable/c/a51335704a3f90eaf23a6864faefca34b382490a

Patch

https://git.kernel.org/stable/c/76a2c5df6ca8bd8ada45e953b8c72b746f42918d

Scores

CVSS v3 6.2

EPSS 0.0025

EPSS Percentile 16.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (15)

Linux/Linux < 5.10

Linux/Linux 5.10

Linux/Linux 5.10.201 - 5.10.*

Linux/Linux 5.15.139 - 5.15.*

Linux/Linux 6.1.63 - 6.1.*

Linux/Linux 6.5.12 - 6.5.*

Linux/Linux 6.6.2 - 6.6.*

Linux/Linux 6.7

Linux/Linux f90cf6079bf67988f8b1ad1ade70fc89d0080905 - 3387490c89b10aeb4e71d78b65dbc9ba4b2385b9

Linux/Linux f90cf6079bf67988f8b1ad1ade70fc89d0080905 - 5c26aae3723965c291c65dd2ecad6a3240d422b0

... and 5 more

Published May 21, 2024

Tracked Since Feb 18, 2026