CVE-2023-52448

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-52448
In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump Syzkaller has reported a NULL pointer dereference when accessing rgd->rd_rgl in gfs2_rgrp_dump(). This can happen when creating rgd->rd_gl fails in read_rindex_entry(). Add a NULL pointer check in gfs2_rgrp_dump() to prevent that.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/067a7c48c2c70f05f9460d6f0e8423e234729f05 Patch
https://git.kernel.org/stable/c/5c28478af371a1c3fdb570ca67f110e1ae60fc37 Patch
https://git.kernel.org/stable/c/8877243beafa7c6bfc42022cbfdf9e39b25bd4fa Patch
https://git.kernel.org/stable/c/c323efd620c741168c8e0cc6fc0be04ab57e331a Patch
https://git.kernel.org/stable/c/d69d7804cf9e2ba171a27e5f98bc266f13d0414a Patch
https://git.kernel.org/stable/c/ee0586d73cbaf0e7058bc640d62a9daf2dfa9178 Patch
https://git.kernel.org/stable/c/efc8ef87ab9185a23d5676f2f7d986022d91bcde Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
History

04 Nov 2024, 13:16

Type Values Removed Values Added
References
  • {'url': 'https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html', 'source': '416baaa9-dc9f-4396-8d5f-8c081fb06d67'}

25 Jun 2024, 21:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html -

18 Mar 2024, 18:38

Type Values Removed Values Added
First Time Linux linux Kernel
Linux
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
CWE CWE-476
References () https://git.kernel.org/stable/c/067a7c48c2c70f05f9460d6f0e8423e234729f05 - () https://git.kernel.org/stable/c/067a7c48c2c70f05f9460d6f0e8423e234729f05 - Patch
References () https://git.kernel.org/stable/c/5c28478af371a1c3fdb570ca67f110e1ae60fc37 - () https://git.kernel.org/stable/c/5c28478af371a1c3fdb570ca67f110e1ae60fc37 - Patch
References () https://git.kernel.org/stable/c/8877243beafa7c6bfc42022cbfdf9e39b25bd4fa - () https://git.kernel.org/stable/c/8877243beafa7c6bfc42022cbfdf9e39b25bd4fa - Patch
References () https://git.kernel.org/stable/c/c323efd620c741168c8e0cc6fc0be04ab57e331a - () https://git.kernel.org/stable/c/c323efd620c741168c8e0cc6fc0be04ab57e331a - Patch
References () https://git.kernel.org/stable/c/d69d7804cf9e2ba171a27e5f98bc266f13d0414a - () https://git.kernel.org/stable/c/d69d7804cf9e2ba171a27e5f98bc266f13d0414a - Patch
References () https://git.kernel.org/stable/c/ee0586d73cbaf0e7058bc640d62a9daf2dfa9178 - () https://git.kernel.org/stable/c/ee0586d73cbaf0e7058bc640d62a9daf2dfa9178 - Patch
References () https://git.kernel.org/stable/c/efc8ef87ab9185a23d5676f2f7d986022d91bcde - () https://git.kernel.org/stable/c/efc8ef87ab9185a23d5676f2f7d986022d91bcde - Patch

22 Feb 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-02-22 17:15

Updated : 2024-11-04 13:16

NVD link : CVE-2023-52448

Mitre link : CVE-2023-52448

CVE.ORG link : CVE-2023-52448

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-476

NULL Pointer Dereference


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024