CVE-2023-52919

MEDIUM EPSS 10.8%
Published Oct 22, 20241y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 22, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix possible NULL pointer dereference in send_acknowledge() Handle memory allocation failure from nci_skb_alloc() (calling alloc_skb()) to avoid possible NULL pointer dereference.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
10.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 13

VendorProductVersionRange
linuxlinux_kernel*≥3.11  –  <4.14.328
linuxlinux_kernel*≥4.15  –  <4.19.297
linuxlinux_kernel*≥4.20  –  <5.4.259
linuxlinux_kernel*≥5.5  –  <5.10.199
linuxlinux_kernel*≥5.11  –  <5.15.137
linuxlinux_kernel*≥5.16  –  <6.1.60
linuxlinux_kernel*≥6.2  –  <6.5.9
linuxlinux_kernel6.6any
linuxlinux_kernel6.6any
linuxlinux_kernel6.6any
linuxlinux_kernel6.6any
linuxlinux_kernel6.6any
linuxlinux_kernel6.6any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/2b2edf089df3a69f0072c6e71563394c5a94e62e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5622592f8f74ae3e594379af02e64ea84772d0dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/76050b0cc5a72e0c7493287b7e18e1cb9e3c4612
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7937609cd387246aed994e81aa4fa951358fba41
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bb6cacc439ddd2cd51227ab193f4f91cfc7f014f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c95fa5b20fe03609e0894656fa43c18045b5097e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d7dbdbe3800a908eecd4975c31be47dd45e2104a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ffdc881f68073ff86bf21afb9bb954812e8278be
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/2b2edf089df3a69f0072c6e71563394c5a94e62e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5622592f8f74ae3e594379af02e64ea84772d0dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/76050b0cc5a72e0c7493287b7e18e1cb9e3c4612
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7937609cd387246aed994e81aa4fa951358fba41
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bb6cacc439ddd2cd51227ab193f4f91cfc7f014f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c95fa5b20fe03609e0894656fa43c18045b5097e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d7dbdbe3800a908eecd4975c31be47dd45e2104a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ffdc881f68073ff86bf21afb9bb954812e8278be
    Patch