CVE-2023-53833NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference7 documents6 sources
Severity
7.0HIGH
No vector
EPSS
0.0%
top 90.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix NULL ptr deref by checking new_crtc_state intel_atomic_get_new_crtc_state can return NULL, unless crtc state wasn't obtained previously with intel_atomic_get_crtc_state, so we must check it for NULLness here, just as in many other places, where we can't guarantee that intel_atomic_get_crtc_state was called. We are currently getting NULL ptr deref because of that, so this fix was confirmed to help. (cherry picked

Affected Packages4 packages

Linuxlinux/linux_kernel5.16.06.1.30+1
Debianlinux/linux_kernel< 6.1.37-1+2
CVEListV5linux/linux74a75dc908692dd0548209004e53832c02433c0cdbf25cc21beff4fd2e730573845a266504b21bb2+3
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-x2p5-wm9v-xvm5: In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix NULL ptr deref by checking new_crtc_state intel_atomic_get_new_crt2025-12-09
OSV
CVE-2023-53833: In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix NULL ptr deref by checking new_crtc_state intel_atomic_get_new_crtc_2025-12-09
OSV
drm/i915: Fix NULL ptr deref by checking new_crtc_state2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state2025-12-09
Debian
CVE-2023-53833: linux - In the Linux kernel, the following vulnerability has been resolved: drm/i915: F...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-53833 Impact, Exploitability, and Mitigation Steps | Wiz