CVE-2023-53228

MEDIUM

Linux kernel - Null Pointer Dereference

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: drop redundant sched job cleanup when cs is aborted Once command submission failed due to userptr invalidation in amdgpu_cs_submit, legacy code will perform cleanup of scheduler job. However, it's not needed at all, as former commit has integrated job cleanup stuff into amdgpu_job_free. Otherwise, because of double free, a NULL pointer dereference will occur in such scenario. Bug: https://gitlab.freedesktop.org/drm/amd/-/issues/2457

References (4)

Core 4

Core References

https://git.kernel.org/stable/c/cdce1644d85e858c68fb5fa67d78eb1035bf34f4

Patch

https://git.kernel.org/stable/c/c1564d4b105ae535eb3183ecaaa987685b20a888

Patch

https://git.kernel.org/stable/c/ec02a29c3c2ef8ad3e15a0e3f96b99a00e5d97b4

Patch

https://git.kernel.org/stable/c/1253685f0d3eb3eab0bfc4bf15ab341a5f3da0c8

Scores

CVSS v3 5.5

EPSS 0.0015

EPSS Percentile 4.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (12)

Linux/Linux < 6.2

Linux/Linux 49aa99f05dbc75b9ae360a74648c420a80f7ee49 - cdce1644d85e858c68fb5fa67d78eb1035bf34f4

Linux/Linux 6.1.160 - 6.1.167

Linux/Linux 6.1.167 - 6.1.*

Linux/Linux 6.2

Linux/Linux 6.2.16 - 6.2.*

Linux/Linux 6.3.3 - 6.3.*

Linux/Linux 6.4

Linux/Linux f7d66fb2ea43a3016e78a700a2ca6c77a74579f9 - 1253685f0d3eb3eab0bfc4bf15ab341a5f3da0c8

Linux/Linux f7d66fb2ea43a3016e78a700a2ca6c77a74579f9 - c1564d4b105ae535eb3183ecaaa987685b20a888

... and 2 more

Published Sep 15, 2025

Tracked Since Feb 18, 2026