Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/hisi: Drop second sensor hi3660 The commit 74c8e6bffbe1 ("driver core: Add __alloc_size hint to devm allocators") exposes a panic "BRK handler: Fatal exception" on the hi3660_thermal_probe funciton. This is because the function allocates memory for only one sensors array entry, but tries to fill up a second one. Fix this by removing the unneeded second access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.20.1, < 5.4.235 |
References
- https://git.kernel.org/stable/c/15cc25829a97c3957e520e971868aacc84341317Patch
- https://git.kernel.org/stable/c/3cf2181e438f43ed24e12424fe36d156cca233b9Patch
- https://git.kernel.org/stable/c/68e675a9b69cfc34dd915d91a4650e3ee53421f4Patch
- https://git.kernel.org/stable/c/9f6756cd09889c7201ee31e6f76fbd914fb0b80dPatch
- https://git.kernel.org/stable/c/e02bc492883abf751fd1a8d89fc025fbce6744c6Patch
- https://git.kernel.org/stable/c/f5aaf140ab1c02889c088e1b1098adad600541afPatch
FAQ
What is CVE-2023-53242?
CVE-2023-53242 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/hisi: Drop second sensor hi3660 The commit 74c8e6bffbe1 ("driver core: Add __alloc_size hint to devm allocators") ...
How severe is CVE-2023-53242?
CVE-2023-53242 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-53242?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.