CVE-2023-52858

low-risk
Published 2024-05-21

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data Add the check for the return value of mtk_alloc_clk_data() in order to avoid NULL pointer dereference.

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.2/10 Medium
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Linux

References (14)

Patch https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0
Patch https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa
Patch https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee
Patch https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d
Patch https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0
Patch https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e
Patch https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94
Patch https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0
Patch https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa
Patch https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee
Patch https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d
Patch https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0
Patch https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e
Patch https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94
25
/ 100
low-risk
Severity 20/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal