CVE-2023-53834Linux vulnerability

7 documents6 sources
Severity
N/A
No vector
EPSS
0.0%
top 90.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ina2xx: avoid NULL pointer dereference on OF device match The affected lines were resulting in a NULL pointer dereference on our platform because the device tree contained the following list of compatible strings: power-sensor@40 { compatible = "ti,ina232", "ti,ina231"; ... }; Since the driver doesn't declare a compatible string "ti,ina232", the OF matching succeeds on "ti,ina231". But the I2C device ID info is pop

Affected Packages4 packages

Linuxlinux/linux_kernel4.5.05.15.127+2
Debianlinux/linux_kernel< 6.1.52-1+2
CVEListV5linux/linuxc43a102e67db99c8bfe6e8a9280cec13ff53b789a8e2ae6296d56478fb98ae7f739846ed121f154f+4
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
OSV
iio: adc: ina2xx: avoid NULL pointer dereference on OF device match2025-12-09
OSV
CVE-2023-53834: In the Linux kernel, the following vulnerability has been resolved: iio: adc: ina2xx: avoid NULL pointer dereference on OF device match The affected l2025-12-09
GHSA
GHSA-vwr3-mpmm-8xqx: In the Linux kernel, the following vulnerability has been resolved: iio: adc: ina2xx: avoid NULL pointer dereference on OF device match The affected2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: iio: adc: ina2xx: avoid NULL pointer dereference on OF device match2025-12-09
Debian
CVE-2023-53834: linux - In the Linux kernel, the following vulnerability has been resolved: iio: adc: i...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-53834 Impact, Exploitability, and Mitigation Steps | Wiz