CVE-2023-52870

MEDIUM

Linux Kernel 5.8-5.10.200 - NULL Pointer Dereference in mtk_alloc_clk_data

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data Add the check for the return value of mtk_alloc_clk_data() in order to avoid NULL pointer dereference.

References (6)

Core 6

Core References

Patch

https://git.kernel.org/stable/c/2617aa8ceaf30e41d3eb7f5fef3445542bef193a

Patch

https://git.kernel.org/stable/c/533ca5153ad6c7b7d47ae0114b14d0333964b946

Patch

https://git.kernel.org/stable/c/dd1f30d68fa98eb672c0a259297b761656a9025f

Patch

https://git.kernel.org/stable/c/10cc81124407d862f0f747db4baa9c006510b480

Patch

https://git.kernel.org/stable/c/b5ff3e89b4e7f46ad2aa0de7e08d18e6f87d71bc

Patch

https://git.kernel.org/stable/c/b82681042724924ae3ba0f2f2eeec217fa31e830

Scores

CVSS v3 4.1

EPSS 0.0022

EPSS Percentile 12.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (15)

Linux/Linux < 5.8

Linux/Linux 1aca9939bf72893887cb7e3455e44c864bada2f9 - 10cc81124407d862f0f747db4baa9c006510b480

Linux/Linux 1aca9939bf72893887cb7e3455e44c864bada2f9 - 2617aa8ceaf30e41d3eb7f5fef3445542bef193a

Linux/Linux 1aca9939bf72893887cb7e3455e44c864bada2f9 - 533ca5153ad6c7b7d47ae0114b14d0333964b946

Linux/Linux 1aca9939bf72893887cb7e3455e44c864bada2f9 - b5ff3e89b4e7f46ad2aa0de7e08d18e6f87d71bc

Linux/Linux 1aca9939bf72893887cb7e3455e44c864bada2f9 - b82681042724924ae3ba0f2f2eeec217fa31e830

Linux/Linux 1aca9939bf72893887cb7e3455e44c864bada2f9 - dd1f30d68fa98eb672c0a259297b761656a9025f

Linux/Linux 5.10.201 - 5.10.*

Linux/Linux 5.15.139 - 5.15.*

Linux/Linux 5.8

... and 5 more

Published May 21, 2024

Tracked Since Feb 18, 2026