CVE-2023-52870

low-risk
Published 2024-05-21

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data Add the check for the return value of mtk_alloc_clk_data() in order to avoid NULL pointer dereference.

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.1/10 Medium
LOCAL / HIGH complexity

Affected Products (1)

Affected Vendors

Linux

References (12)

Patch https://git.kernel.org/stable/c/10cc81124407d862f0f747db4baa9c006510b480
Patch https://git.kernel.org/stable/c/2617aa8ceaf30e41d3eb7f5fef3445542bef193a
Patch https://git.kernel.org/stable/c/533ca5153ad6c7b7d47ae0114b14d0333964b946
Patch https://git.kernel.org/stable/c/b5ff3e89b4e7f46ad2aa0de7e08d18e6f87d71bc
Patch https://git.kernel.org/stable/c/b82681042724924ae3ba0f2f2eeec217fa31e830
Patch https://git.kernel.org/stable/c/dd1f30d68fa98eb672c0a259297b761656a9025f
Patch https://git.kernel.org/stable/c/10cc81124407d862f0f747db4baa9c006510b480
Patch https://git.kernel.org/stable/c/2617aa8ceaf30e41d3eb7f5fef3445542bef193a
Patch https://git.kernel.org/stable/c/533ca5153ad6c7b7d47ae0114b14d0333964b946
Patch https://git.kernel.org/stable/c/b5ff3e89b4e7f46ad2aa0de7e08d18e6f87d71bc
Patch https://git.kernel.org/stable/c/b82681042724924ae3ba0f2f2eeec217fa31e830
Patch https://git.kernel.org/stable/c/dd1f30d68fa98eb672c0a259297b761656a9025f
16
/ 100
low-risk
Severity 11/34 · Low
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal