CVE-2023-52861

MEDIUM

Linux Kernel - NULL Pointer Dereference in DRM Bridge IT66121 Connector Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm: bridge: it66121: Fix invalid connector dereference Fix the NULL pointer dereference when no monitor is connected, and the sound card is opened from userspace. Instead return an empty buffer (of zeroes) as the EDID information to the sound framework if there is no connector attached.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/2c80c4f0d2845645f41cbb7c9304c8efbdbd4331

Patch

https://git.kernel.org/stable/c/1669d7b21a664aa531856ce85b01359a376baebc

Patch

https://git.kernel.org/stable/c/1374561a7cbc9a000b77bb0473bb2c19daf18d86

Patch

https://git.kernel.org/stable/c/d0375f6858c4ff7244b62b02eb5e93428e1916cd

Scores

CVSS v3 6.2

EPSS 0.0025

EPSS Percentile 16.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (11)

Linux/Linux < 5.19

Linux/Linux 5.19

Linux/Linux 6.1.63 - 6.1.*

Linux/Linux 6.5.12 - 6.5.*

Linux/Linux 6.6.2 - 6.6.*

Linux/Linux 6.7

Linux/Linux e0fd83dbe92426e4f09b01111d260d2a7dc72fdb - 1374561a7cbc9a000b77bb0473bb2c19daf18d86

Linux/Linux e0fd83dbe92426e4f09b01111d260d2a7dc72fdb - 1669d7b21a664aa531856ce85b01359a376baebc

Linux/Linux e0fd83dbe92426e4f09b01111d260d2a7dc72fdb - 2c80c4f0d2845645f41cbb7c9304c8efbdbd4331

Linux/Linux e0fd83dbe92426e4f09b01111d260d2a7dc72fdb - d0375f6858c4ff7244b62b02eb5e93428e1916cd

... and 1 more

Published May 21, 2024

Tracked Since Feb 18, 2026