CVE-2023-53483
Analyzed
Analyzed - Analysis Complete
BaseFortify
Publication date: 2025-10-01
Last updated on: 2026-01-23
Assigner: kernel.org
Description
Description
In the Linux kernel, the following vulnerability has been resolved:
ACPI: processor: Check for null return of devm_kzalloc() in fch_misc_setup()
devm_kzalloc() may fail, clk_data->name might be NULL and will
cause a NULL pointer dereference later.
[ rjw: Subject and changelog edits ]
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.17 (inc) to 6.1.30 (exc) |
| linux | linux_kernel | From 6.2 (inc) to 6.3.4 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-476 | The product dereferences a pointer that it expects to be valid but is NULL. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in the Linux kernel's ACPI processor code where a function called devm_kzalloc() may fail and return NULL. If this happens, the clk_data->name pointer can be NULL, which later leads to a NULL pointer dereference, potentially causing a system crash or instability.
How can this vulnerability impact me? :
The impact of this vulnerability is that it can cause a NULL pointer dereference in the Linux kernel, which may lead to system crashes or instability, potentially affecting the availability and reliability of the affected system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70