CVE-2023-54315NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference7 documents6 sources
Severity
3.3LOW
No vector
EPSS
0.0%
top 89.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/sriov: perform null check on iov before dereferencing iov Currently pointer iov is being dereferenced before the null check of iov which can lead to null pointer dereference errors. Fix this by moving the iov null check before the dereferencing. Detected using cppcheck static analysis: linux/arch/powerpc/platforms/powernv/pci-sriov.c:597:12: warning: Either the condition '!iov' is redundant or there is possibl

Affected Packages4 packages

Linuxlinux/linux_kernel5.9.05.10.188+4
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linux052da31d45fc71238ea8bed7e9a84648a1ee0bf307c19c0ad4b07f4b598da369714de028f6a6a323+6
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-jx25-4v2r-83c2: In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/sriov: perform null check on iov before dereferencing iov Curren2025-12-30
OSV
powerpc/powernv/sriov: perform null check on iov before dereferencing iov2025-12-30
OSV
CVE-2023-54315: In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/sriov: perform null check on iov before dereferencing iov Currentl2025-12-30

📋Vendor Advisories

2
Red Hat
kernel: powerpc/powernv/sriov: perform null check on iov before dereferencing iov2025-12-30
Debian
CVE-2023-54315: linux - In the Linux kernel, the following vulnerability has been resolved: powerpc/pow...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54315 Impact, Exploitability, and Mitigation Steps | Wiz