CVE-2023-53444NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 97.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 18

Description

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix bulk_move corruption when adding a entry When the resource is the first in the bulk_move range, adding it again (thus moving it to the tail) will corrupt the list since the first pointer is not moved. This eventually lead to null pointer deref in ttm_lru_bulk_move_del()

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel5.196.1.42+2
Debianlinux/linux_kernel< 6.1.52-1+2
CVEListV5linux/linuxfee2ede155423b0f7a559050a39750b98fe9db6970a3015683b007a0db4a1e858791b69afd45fc83+3
debiandebian/linux< linux 6.1.52-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2023-53444: In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix bulk_move corruption when adding a entry When the resource is the fir2025-09-18
GHSA
GHSA-6cj4-5m2x-2qj3: In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix bulk_move corruption when adding a entry When the resource is the f2025-09-18

📋Vendor Advisories

2
Red Hat
kernel: drm/ttm: fix bulk_move corruption when adding a entry2025-09-18
Debian
CVE-2023-53444: linux - In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fi...2023
CVE-2023-53444 — NULL Pointer Dereference in Linux | cvebase