CVE-2023-53325
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-16

Last updated on: 2025-12-10

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: Change logging to dev for mtk_dp_aux_transfer() Change logging from drm_{err,info}() to dev_{err,info}() in functions mtk_dp_aux_transfer() and mtk_dp_aux_do_transfer(): this will be essential to avoid getting NULL pointer kernel panics if any kind of error happens during AUX transfers happening before the bridge is attached. This may potentially start happening in a later commit implementing aux-bus support, as AUX transfers will be triggered from the panel driver (for EDID) before the mtk-dp bridge gets attached, and it's done in preparation for the same.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-16
Last Modified
2025-12-10
Generated
2026-06-16
AI Q&A
2025-09-16
EPSS Evaluated
2026-06-15
NVD
CVE-2023-53325
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 6.1 (inc) to 6.1.55 (exc)
linux linux_kernel From 6.2 (inc) to 6.5.5 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability involves the Linux kernel's MediaTek DisplayPort (dp) driver where logging functions were incorrectly used in the mtk_dp_aux_transfer() and mtk_dp_aux_do_transfer() functions. The logging was done using drm_{err,info}() instead of dev_{err,info}(), which could lead to NULL pointer kernel panics if errors occur during AUX transfers before the bridge is attached. This issue arises because AUX transfers may be triggered from the panel driver for EDID before the mtk-dp bridge is attached, potentially causing system instability or crashes.

Impact Analysis

This vulnerability can cause the Linux kernel to experience NULL pointer kernel panics during AUX transfers in the MediaTek DisplayPort driver, leading to system crashes or instability. This can affect system reliability and availability, especially in environments using affected hardware and kernel versions.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2023-53325. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart