Home > Vulnerability Database > CVE-2023-52448

Mend.io Vulnerability Database

CVE-2023-52448

Good to know:

Date: February 22, 2024

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump Syzkaller has reported a NULL pointer dereference when accessing rgd->rd_rgl in gfs2_rgrp_dump(). This can happen when creating rgd->rd_gl fails in read_rindex_entry(). Add a NULL pointer check in gfs2_rgrp_dump() to prevent that.

Language: Java

Severity Score

5.5

Related Resources (10)

Url: https://git.kernel.org/stable/c/067a7c48c2c70f05f9460d6f0e8423e234729f05

Url: https://git.kernel.org/stable/c/8877243beafa7c6bfc42022cbfdf9e39b25bd4fa

Url: https://git.kernel.org/stable/c/5c28478af371a1c3fdb570ca67f110e1ae60fc37

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-52448

Url: https://git.kernel.org/stable/c/c323efd620c741168c8e0cc6fc0be04ab57e331a

Url: https://access.redhat.com/security/cve/CVE-2023-52448

Url: https://git.kernel.org/stable/c/d69d7804cf9e2ba171a27e5f98bc266f13d0414a

Url: https://git.kernel.org/stable/c/efc8ef87ab9185a23d5676f2f7d986022d91bcde

Url: https://git.kernel.org/stable/c/ee0586d73cbaf0e7058bc640d62a9daf2dfa9178

Url: https://www.mend.io/vulnerability-database/CVE-2023-52448

Severity Score

5.5

Weakness Type (CWE)

NULL Pointer Dereference

CWE-476

Top Fix

Upgrade Version

Upgrade to version v5.4.268,v5.10.209,v5.15.148,v6.1.75,v6.6.14,v6.7.2

Learn More

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-52448

Good to know:

Date: February 22, 2024

Language: Java

Severity Score

Related Resources (10)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?