CVE-2023-52662 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node When ida_alloc_max fails, resources allocated before should be freed, including *res allocated by kmalloc and ttm_resource_init.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Redhat	Enterprise Linux

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 8
kernel-rt-0:4.18.0-553.16.1.rt7.357.el8_10	cpe:/a:redhat:enterprise_linux:8::nfv	RHSA-2024:5102	2024-08-08T00:00:00Z
kernel-0:4.18.0-553.16.1.el8_10	cpe:/o:redhat:enterprise_linux:8	RHSA-2024:5101	2024-08-08T00:00:00Z
Red Hat Enterprise Linux 9
kernel-0:5.14.0-503.11.1.el9_5	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:9315	2024-11-12T00:00:00Z
kernel-0:5.14.0-503.11.1.el9_5	cpe:/o:redhat:enterprise_linux:9	RHSA-2024:9315	2024-11-12T00:00:00Z

References

Link	Providers
https://git.kernel.org/stable/c/03b1072616a8f7d6e8594f643b416a9467c83fbf
https://git.kernel.org/stable/c/40624af6674745e174c754a20d7c53c250e65e7a
https://git.kernel.org/stable/c/6fc6233f6db1579b69b54b44571f1a7fde8186e6
https://git.kernel.org/stable/c/83e0f220d1e992fa074157fcf14945bf170ffbc5
https://git.kernel.org/stable/c/89709105a6091948ffb6ec2427954cbfe45358ce
https://git.kernel.org/stable/c/d1e546ab91c670e536a274a75481034ab7534876
https://lore.kernel.org/linux-cve-announce/2024051740-CVE-2023-52662-1536@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-52662
https://www.cve.org/CVERecord?id=CVE-2023-52662

History

Wed, 13 Nov 2024 02:45:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:enterprise_linux:9 cpe:/o:redhat:enterprise_linux:9

Mon, 04 Nov 2024 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 08 Aug 2024 19:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat Redhat enterprise Linux
CPEs		cpe:/a:redhat:enterprise_linux:8::nfv cpe:/o:redhat:enterprise_linux:8
Vendors & Products		Redhat Redhat enterprise Linux

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-17T13:41:02.183Z

Updated: 2024-11-04T14:50:41.401Z

Reserved: 2024-03-07T14:49:46.885Z

Link: CVE-2023-52662

Vulnrichment

Updated: 2024-08-02T23:03:21.236Z

NVD

Status : Awaiting Analysis

Published: 2024-05-17T14:15:08.373

Modified: 2024-05-17T18:35:35.070

Link: CVE-2023-52662

Redhat

Severity : Low

Publid Date: 2024-05-17T00:00:00Z

Links: CVE-2023-52662 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object