CVE-2023-52563 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: drm/meson: fix memory leak on ->hpd_notify callback The EDID returned by drm_bridge_get_edid() needs to be freed.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/099f0af9d98231bb74956ce92508e87cbcb896be
https://git.kernel.org/stable/c/43b63e088887a8b82750e16762f77100ffa76cba
https://git.kernel.org/stable/c/66cb6d74f5a1b6eafe3370b56bf2cb575a91acbc
https://git.kernel.org/stable/c/ee335e0094add7fc2c7034e0534e1920d61d2078
https://lore.kernel.org/linux-cve-announce/2024030253-CVE-2023-52563-269f@gregkh/T/#u
https://nvd.nist.gov/vuln/detail/CVE-2023-52563
https://www.cve.org/CVERecord?id=CVE-2023-52563

History

Thu, 12 Sep 2024 08:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 11 Sep 2024 13:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-03-02T21:59:36.220Z

Updated: 2024-09-11T17:33:37.258Z

Reserved: 2024-03-02T21:55:42.567Z

Link: CVE-2023-52563

Vulnrichment

Updated: 2024-08-02T23:03:20.849Z

NVD

Status : Awaiting Analysis

Published: 2024-03-02T22:15:48.890

Modified: 2024-03-04T13:58:23.447

Link: CVE-2023-52563

Redhat

Severity : Low

Publid Date: 2024-03-02T00:00:00Z

Links: CVE-2023-52563 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-52563", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-03-02T21:55:42.567Z", "datePublished": "2024-03-02T21:59:36.220Z", "dateUpdated": "2024-09-11T17:33:37.258Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-05-29T05:13:36.135Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/meson: fix memory leak on ->hpd_notify callback\n\nThe EDID returned by drm_bridge_get_edid() needs to be freed."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/meson/meson_encoder_hdmi.c"], "versions": [{"version": "e098989a9219", "lessThan": "66cb6d74f5a1", "status": "affected", "versionType": "git"}, {"version": "0af5e0b41110", "lessThan": "ee335e0094ad", "status": "affected", "versionType": "git"}, {"version": "0af5e0b41110", "lessThan": "43b63e088887", "status": "affected", "versionType": "git"}, {"version": "0af5e0b41110", "lessThan": "099f0af9d982", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/meson/meson_encoder_hdmi.c"], "versions": [{"version": "5.17", "status": "affected"}, {"version": "0", "lessThan": "5.17", "status": "unaffected", "versionType": "custom"}, {"version": "5.15.134", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.1.56", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.5.6", "lessThanOrEqual": "6.5.*", "status": "unaffected", "versionType": "custom"}, {"version": "6.6", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/66cb6d74f5a1b6eafe3370b56bf2cb575a91acbc"}, {"url": "https://git.kernel.org/stable/c/ee335e0094add7fc2c7034e0534e1920d61d2078"}, {"url": "https://git.kernel.org/stable/c/43b63e088887a8b82750e16762f77100ffa76cba"}, {"url": "https://git.kernel.org/stable/c/099f0af9d98231bb74956ce92508e87cbcb896be"}], "title": "drm/meson: fix memory leak on ->hpd_notify callback", "x_generator": {"engine": "bippy-a5840b7849dd"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:20.849Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/66cb6d74f5a1b6eafe3370b56bf2cb575a91acbc", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/ee335e0094add7fc2c7034e0534e1920d61d2078", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/43b63e088887a8b82750e16762f77100ffa76cba", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/099f0af9d98231bb74956ce92508e87cbcb896be", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52563", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T15:56:32.678323Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T17:33:37.258Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/66cb6d74f5a1b6eafe3370b56bf2cb575a91acbc", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/ee335e0094add7fc2c7034e0534e1920d61d2078", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/43b63e088887a8b82750e16762f77100ffa76cba", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/099f0af9d98231bb74956ce92508e87cbcb896be", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:03:20.849Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-52563", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T15:56:32.678323Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T12:42:17.668Z"}}], "cna": {"title": "drm/meson: fix memory leak on ->hpd_notify callback", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "e098989a9219", "lessThan": "66cb6d74f5a1", "versionType": "git"}, {"status": "affected", "version": "0af5e0b41110", "lessThan": "ee335e0094ad", "versionType": "git"}, {"status": "affected", "version": "0af5e0b41110", "lessThan": "43b63e088887", "versionType": "git"}, {"status": "affected", "version": "0af5e0b41110", "lessThan": "099f0af9d982", "versionType": "git"}], "programFiles": ["drivers/gpu/drm/meson/meson_encoder_hdmi.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "5.17"}, {"status": "unaffected", "version": "0", "lessThan": "5.17", "versionType": "custom"}, {"status": "unaffected", "version": "5.15.134", "versionType": "custom", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "6.1.56", "versionType": "custom", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.5.6", "versionType": "custom", "lessThanOrEqual": "6.5.*"}, {"status": "unaffected", "version": "6.6", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/gpu/drm/meson/meson_encoder_hdmi.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/66cb6d74f5a1b6eafe3370b56bf2cb575a91acbc"}, {"url": "https://git.kernel.org/stable/c/ee335e0094add7fc2c7034e0534e1920d61d2078"}, {"url": "https://git.kernel.org/stable/c/43b63e088887a8b82750e16762f77100ffa76cba"}, {"url": "https://git.kernel.org/stable/c/099f0af9d98231bb74956ce92508e87cbcb896be"}], "x_generator": {"engine": "bippy-a5840b7849dd"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/meson: fix memory leak on ->hpd_notify callback\n\nThe EDID returned by drm_bridge_get_edid() needs to be freed."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-05-29T05:13:36.135Z"}}}, "cveMetadata": {"cveId": "CVE-2023-52563", "state": "PUBLISHED", "dateUpdated": "2024-09-11T17:33:37.258Z", "dateReserved": "2024-03-02T21:55:42.567Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-03-02T21:59:36.220Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}