CVE-2023-52838

low-risk
Published 2024-05-21

In the Linux kernel, the following vulnerability has been resolved: fbdev: imsttfb: fix a resource leak in probe I've re-written the error handling but the bug is that if init_imstt() fails we need to call iounmap(par->cmap_regs).

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.2/10 Medium
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Linux

References (16)

Patch https://git.kernel.org/stable/c/18d26f9baca7d0d309303e3074a2252b8310884a
Patch https://git.kernel.org/stable/c/382e1931e0c9cd58a5a8519cdc6cd9dc4d82b485
Patch https://git.kernel.org/stable/c/6c66d737b2726ac7784269ddf32a31634f8f269d
Patch https://git.kernel.org/stable/c/7bc7b82fb2191b0d50a80ee4e27030918767dd1d
Patch https://git.kernel.org/stable/c/8e4b510fe91782522b7ca0ca881b663b5d35e513
Patch https://git.kernel.org/stable/c/a4dfebec32ec6d420a5506dd56a7834c91be28e4
Patch https://git.kernel.org/stable/c/aba6ab57a910ad4b940c2024d15f2cdbf5b7f76b
Patch https://git.kernel.org/stable/c/b346a531159d08c564a312a9eaeea691704f3c00
Patch https://git.kernel.org/stable/c/18d26f9baca7d0d309303e3074a2252b8310884a
Patch https://git.kernel.org/stable/c/382e1931e0c9cd58a5a8519cdc6cd9dc4d82b485
Patch https://git.kernel.org/stable/c/6c66d737b2726ac7784269ddf32a31634f8f269d
Patch https://git.kernel.org/stable/c/7bc7b82fb2191b0d50a80ee4e27030918767dd1d
Patch https://git.kernel.org/stable/c/8e4b510fe91782522b7ca0ca881b663b5d35e513
Patch https://git.kernel.org/stable/c/a4dfebec32ec6d420a5506dd56a7834c91be28e4
Patch https://git.kernel.org/stable/c/aba6ab57a910ad4b940c2024d15f2cdbf5b7f76b
Patch https://git.kernel.org/stable/c/b346a531159d08c564a312a9eaeea691704f3c00
25
/ 100
low-risk
Severity 20/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal