CVE-2023-52862

low-risk

Published 2024-05-21

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null pointer dereference in error message This patch fixes a null pointer dereference in the error message that is printed when the Display Core (DC) fails to initialize. The original message includes the DC version number, which is undefined if the DC is not initialized.

Do I need to act?

0.02% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 4.1/10 Medium

LOCAL / HIGH complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (6)

Patch https://git.kernel.org/stable/c/0c3601a2fbfb265ce283651480e30c8e60459112

Patch https://git.kernel.org/stable/c/8b72c5d4a5d25e76b16283397c40b8b3c0d70019

Patch https://git.kernel.org/stable/c/97ef07182ac46b069bb5e7d46cb903a764d67898

Patch https://git.kernel.org/stable/c/0c3601a2fbfb265ce283651480e30c8e60459112

Patch https://git.kernel.org/stable/c/8b72c5d4a5d25e76b16283397c40b8b3c0d70019

Patch https://git.kernel.org/stable/c/97ef07182ac46b069bb5e7d46cb903a764d67898

/ 100

low-risk

Severity 11/34 · Low

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal