CVE-2023-52467 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fix null pointer dereference in of_syscon_register() kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

No data.

References

Link	Providers
https://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c
https://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1
https://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001
https://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973
https://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875
https://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html
https://nvd.nist.gov/vuln/detail/CVE-2023-52467
https://www.cve.org/CVERecord?id=CVE-2023-52467

History

Thu, 12 Sep 2024 08:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 11 Sep 2024 13:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-02-25T08:16:31.745Z

Updated: 2024-09-11T17:33:46.138Z

Reserved: 2024-02-20T12:30:33.297Z

Link: CVE-2023-52467

Vulnrichment

Updated: 2024-08-02T23:03:19.769Z

NVD

Status : Modified

Published: 2024-02-26T16:27:48.657

Modified: 2024-06-25T21:15:53.350

Link: CVE-2023-52467

Redhat

Severity : Low

Publid Date: 2024-02-26T00:00:00Z

Links: CVE-2023-52467 - Bugzilla

{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2023-52467", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-02-20T12:30:33.297Z", "datePublished": "2024-02-25T08:16:31.745Z", "dateUpdated": "2024-09-11T17:33:46.138Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-05-28T19:49:58.542Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: syscon: Fix null pointer dereference in of_syscon_register()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/mfd/syscon.c"], "versions": [{"version": "e15d7f2b81d2", "lessThan": "927626a20738", "status": "affected", "versionType": "git"}, {"version": "e15d7f2b81d2", "lessThan": "c3e3a2144bf5", "status": "affected", "versionType": "git"}, {"version": "e15d7f2b81d2", "lessThan": "527e8c5f3d00", "status": "affected", "versionType": "git"}, {"version": "e15d7f2b81d2", "lessThan": "3ef1130deee9", "status": "affected", "versionType": "git"}, {"version": "e15d7f2b81d2", "lessThan": "7f2c410ac470", "status": "affected", "versionType": "git"}, {"version": "e15d7f2b81d2", "lessThan": "41673c66b3d0", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/mfd/syscon.c"], "versions": [{"version": "5.9", "status": "affected"}, {"version": "0", "lessThan": "5.9", "status": "unaffected", "versionType": "custom"}, {"version": "5.10.209", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "custom"}, {"version": "5.15.148", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.1.75", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.6.14", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.7.2", "lessThanOrEqual": "6.7.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.8", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875"}, {"url": "https://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b"}, {"url": "https://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001"}, {"url": "https://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c"}, {"url": "https://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973"}, {"url": "https://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html"}], "title": "mfd: syscon: Fix null pointer dereference in of_syscon_register()", "x_generator": {"engine": "bippy-a5840b7849dd"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:19.769Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52467", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T16:02:30.477926Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T17:33:46.138Z"}}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:19.769Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52467", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T16:02:30.477926Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T12:42:18.556Z"}}], "cna": {"title": "mfd: syscon: Fix null pointer dereference in of_syscon_register()", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "e15d7f2b81d2", "lessThan": "927626a20738", "versionType": "git"}, {"status": "affected", "version": "e15d7f2b81d2", "lessThan": "c3e3a2144bf5", "versionType": "git"}, {"status": "affected", "version": "e15d7f2b81d2", "lessThan": "527e8c5f3d00", "versionType": "git"}, {"status": "affected", "version": "e15d7f2b81d2", "lessThan": "3ef1130deee9", "versionType": "git"}, {"status": "affected", "version": "e15d7f2b81d2", "lessThan": "7f2c410ac470", "versionType": "git"}, {"status": "affected", "version": "e15d7f2b81d2", "lessThan": "41673c66b3d0", "versionType": "git"}], "programFiles": ["drivers/mfd/syscon.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "5.9"}, {"status": "unaffected", "version": "0", "lessThan": "5.9", "versionType": "custom"}, {"status": "unaffected", "version": "5.10.209", "versionType": "custom", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.15.148", "versionType": "custom", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "6.1.75", "versionType": "custom", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.6.14", "versionType": "custom", "lessThanOrEqual": "6.6.*"}, {"status": "unaffected", "version": "6.7.2", "versionType": "custom", "lessThanOrEqual": "6.7.*"}, {"status": "unaffected", "version": "6.8", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/mfd/syscon.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875"}, {"url": "https://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b"}, {"url": "https://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001"}, {"url": "https://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c"}, {"url": "https://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973"}, {"url": "https://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html"}], "x_generator": {"engine": "bippy-a5840b7849dd"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: syscon: Fix null pointer dereference in of_syscon_register()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-05-28T19:49:58.542Z"}}}, "cveMetadata": {"cveId": "CVE-2023-52467", "state": "PUBLISHED", "dateUpdated": "2024-09-11T17:33:46.138Z", "dateReserved": "2024-02-20T12:30:33.297Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-02-25T08:16:31.745Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "CDB2CF71-A47E-4390-B675-6597A78D6ADE", "versionEndExcluding": "5.10.209", "versionStartIncluding": "5.9.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "E25E1389-4B0F-407A-9C94-5908FF3EE88B", "versionEndExcluding": "5.15.148", "versionStartIncluding": "5.11.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "2C4951FA-80C0-4B4C-9836-6E5035DEB0F9", "versionEndExcluding": "6.1.75", "versionStartIncluding": "5.16.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "BDBBEB0E-D13A-4567-8984-51C5375350B9", "versionEndExcluding": "6.6.14", "versionStartIncluding": "6.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "0EA3778C-730B-464C-8023-18CA6AC0B807", "versionEndExcluding": "6.7.2", "versionStartIncluding": "6.7.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: syscon: Fix null pointer dereference in of_syscon_register()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure."}, {"lang": "es", "value": "En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: mfd: syscon: corrige la desreferencia del puntero nulo en of_syscon_register() kasprintf() devuelve un puntero a la memoria asignada din\u00e1micamente que puede ser NULL en caso de falla."}], "id": "CVE-2023-52467", "lastModified": "2024-06-25T21:15:53.350", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-02-26T16:27:48.657", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: null pointer dereference in of_syscon_register()", "id": "2266212", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266212"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.4", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-476", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nmfd: syscon: Fix null pointer dereference in of_syscon_register()\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.", "A vulnerability was found in the Linux kernel, where A NULL pointer dereference flaw may occur in _syscon_register(). In this issue, kasprintf() returns a pointer to dynamically allocated memory, which can be NULL upon failure."], "name": "CVE-2023-52467", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Under investigation", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Under investigation", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Under investigation", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-02-26T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-52467\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-52467\nhttps://git.kernel.org/stable/c/3ef1130deee98997275904d9bfc37af75e1e906c\nhttps://git.kernel.org/stable/c/41673c66b3d0c09915698fec5c13b24336f18dd1\nhttps://git.kernel.org/stable/c/527e8c5f3d00299822612c495d5adf1f8f43c001\nhttps://git.kernel.org/stable/c/7f2c410ac470959b88e03dadd94b7a0b71df7973\nhttps://git.kernel.org/stable/c/927626a2073887ee30ba00633260d4d203f8e875\nhttps://git.kernel.org/stable/c/c3e3a2144bf50877551138ffce9f7aa6ddfe385b"], "threat_severity": "Low"}