CVE-2023-54044NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 84.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: spmi: Add a check for remove callback when removing a SPMI driver When removing a SPMI driver, there can be a crash due to NULL pointer dereference if it does not have a remove callback defined. This is one such call trace observed when removing the QCOM SPMI PMIC driver: dump_backtrace.cfi_jt+0x0/0x8 dump_stack_lvl+0xd8/0x16c panic+0x188/0x498 __cfi_slowpath+0x0/0x214 __cfi_slowpath+0x1dc/0x214 spmi_drv_remove+0x16c/0x1e0 de

Affected Packages4 packages

Linuxlinux/linux_kernel3.15.04.14.315+7
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linux5a86bf343976b9c8ab2f240bc866451fa67e5573b95a69214daea4aab1c8bad96571d988a62e2c97+9
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
OSV
spmi: Add a check for remove callback when removing a SPMI driver2025-12-24
OSV
CVE-2023-54044: In the Linux kernel, the following vulnerability has been resolved: spmi: Add a check for remove callback when removing a SPMI driver When removing a2025-12-24
GHSA
GHSA-vx9r-hw29-38g6: In the Linux kernel, the following vulnerability has been resolved: spmi: Add a check for remove callback when removing a SPMI driver When removing2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: spmi: Add a check for remove callback when removing a SPMI driver2025-12-24
Debian
CVE-2023-54044: linux - In the Linux kernel, the following vulnerability has been resolved: spmi: Add a...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54044 Impact, Exploitability, and Mitigation Steps | Wiz