CVE-2023-53005

MEDIUM EPSS 15.9%
Published Mar 27, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Mar 27, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: trace_events_hist: add check for return value of 'create_hist_field' Function 'create_hist_field' is called recursively at trace_events_hist.c:1954 and can return NULL-value that's why we have to check it to avoid null pointer dereference. Found by Linux Verification Center (linuxtesting.org) with SVACE.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
15.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥4.17  –  <4.19.272
linuxlinux_kernel*≥4.20  –  <5.4.231
linuxlinux_kernel*≥5.5  –  <5.10.166
linuxlinux_kernel*≥5.11  –  <5.15.91
linuxlinux_kernel*≥5.16  –  <6.1.9
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/31b2414abeaa6de0490e85164badc6dcb1bb8ec9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/592ba7116fa620425725ff0972691f352ba3caf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/886aa449235f478e262bbd5dcdee6ed6bc202949
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8b152e9150d07a885f95e1fd401fc81af202d9a4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b4e7e81b4fdfcf457daee6b7a61769f62198d840
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d2d1ada58e7cc100b8d7d6b082d19321ba4a700a
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/31b2414abeaa6de0490e85164badc6dcb1bb8ec9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/592ba7116fa620425725ff0972691f352ba3caf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/886aa449235f478e262bbd5dcdee6ed6bc202949
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8b152e9150d07a885f95e1fd401fc81af202d9a4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b4e7e81b4fdfcf457daee6b7a61769f62198d840
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d2d1ada58e7cc100b8d7d6b082d19321ba4a700a
    Patch