CVE-2023-53444

MEDIUM

Linux Kernel - NULL Pointer Dereference in TTM Bulk Move Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix bulk_move corruption when adding a entry When the resource is the first in the bulk_move range, adding it again (thus moving it to the tail) will corrupt the list since the first pointer is not moved. This eventually lead to null pointer deref in ttm_lru_bulk_move_del()

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/70a3015683b007a0db4a1e858791b69afd45fc83

Patch

https://git.kernel.org/stable/c/e7cf50e41bdc2d574056ebbfeaafc5f0e2562d5b

Patch

https://git.kernel.org/stable/c/4481913607e58196c48a4fef5e6f45350684ec3c

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (10)

Linux/Linux < 5.19

Linux/Linux 5.19

Linux/Linux 6.1.42 - 6.1.*

Linux/Linux 6.4.7 - 6.4.*

Linux/Linux 6.5

Linux/Linux fee2ede155423b0f7a559050a39750b98fe9db69 - 4481913607e58196c48a4fef5e6f45350684ec3c

Linux/Linux fee2ede155423b0f7a559050a39750b98fe9db69 - 70a3015683b007a0db4a1e858791b69afd45fc83

Linux/Linux fee2ede155423b0f7a559050a39750b98fe9db69 - e7cf50e41bdc2d574056ebbfeaafc5f0e2562d5b

linux/linux_kernel 6.5 rc1

linux/linux_kernel 5.19 - 6.1.42

Published Sep 18, 2025

Tracked Since Feb 18, 2026