CVE-2023-54249

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: Only send -ENOTCONN status if client driver is available For the STOP and RESET commands, only send the channel disconnect status -ENOTCONN if client driver is available. Otherwise, it will result in null pointer dereference.

References

https://git.kernel.org/stable/c/353aea15d6edbd4e69e039356a1bd3e641f7d952
https://git.kernel.org/stable/c/860ad591056d7e4dc30bc130b6ec6e6d70930c85
https://git.kernel.org/stable/c/e6cebcc27519dcf1652e604c73b9fd4f416987c0

FAQ

What is CVE-2023-54249?

CVE-2023-54249 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: Only send -ENOTCONN status if client driver is available For the STOP and RESET commands, only send the channel disc...

How severe is CVE-2023-54249?

CVSS scoring is not yet available for CVE-2023-54249. Check NVD for updates.

Is there a patch for CVE-2023-54249?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.