CVE-2023-22997 — NULL Pointer Dereference in Kernel

CWE-476 — NULL Pointer Dereference CWE-436 — Interpretation Conflict8 documents7 sources

Severity

5.5MEDIUMNVD

OSV7.8

EPSS

0.1%

top 73.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Msrc Cbl2 Kernel 5.15.111.1-1 ON CBL Mariner 2.0 +5 more

Timeline

PublishedFeb 28

Latest updateApr 19

Description

In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the module_get_next_page return value (expects it to be NULL in the error case, whereas it is actually an error pointer).

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages9 packages

▶NVDlinux/linux_kernel< 6.1.2

▶Debianlinux/linux_kernel< 6.1.4-1+2

▶msrcmsrc/cm1_kernel_5.10.174.1-1_on_cbl_mariner_1.0

▶msrcmsrc/cbl2_kernel_5.15.111.1-1_on_cbl_mariner_2.0

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.19, linux-kvm, linux-lowlatency, linux-oracle, linux-raspi vulnerabilities↗2023-04-19

▶

GHSA

GHSA-c954-449c-8jv4: In the Linux kernel before 6↗2023-02-28

▶

OSV

CVE-2023-22997: In the Linux kernel before 6↗2023-02-28

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2023-04-19

▶

Red Hat

kernel: module: improper return value check in gzip/xz module decompress↗2023-02-28

▶

Microsoft

In the Linux kernel before 6.1.2 kernel/module/decompress.c misinterprets the module_get_next_page return value (expects it to be NULL in the error case whereas it is actually an error pointer).↗2023-02-14

▶

Debian

CVE-2023-22997: linux - In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the m...↗2023

▶