CVE-2023-3358

Опубликовано: 22 нояб. 2022

Источник: redhat

CVSS3: 4.7

Описание

A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system.

Отчет

Rated Low severity; No known scenario of attack and fail would happen when out of memory.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 8	kernel	Fix deferred
Red Hat Enterprise Linux 8	kernel-rt	Fix deferred
Red Hat Enterprise Linux 9	kernel-rt	Affected
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2023:6583	07.11.2023
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2023:6583	07.11.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2169343kernel: NULL pointer dereference due to missing kalloc() return value check in shtp_cl_get_dma_send_buf()

4.7 Medium

CVSS3

Связанные уязвимости

CVE-2023-3358

CVSS3: 5.5

ubuntu

почти 2 года назад

A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system.

CVE-2023-3358

CVSS3: 5.5

nvd

почти 2 года назад

A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system.

CVE-2023-3358

CVSS3: 5.5

msrc

почти 2 года назад

Описание отсутствует

CVE-2023-3358

CVSS3: 5.5

debian

почти 2 года назад

A null pointer dereference was found in the Linux kernel's Integrated ...

GHSA-rmg8-h2h6-5wwf

CVSS3: 5.5

github

почти 2 года назад

A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system.

4.7 Medium

CVSS3