CVE-2023-52763
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-52763
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52763.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-52763
- Downstream
- Related
- Published
- 2024-05-21T16:15:15Z
- Modified
- 2025-09-19T14:39:18Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
i3c: master: mipi-i3c-hci: Fix a kernel panic for accessing DAT_data.
The
i3c_master_bus_initfunction may attach the I2C devices before the I3C bus initialization. In this flow, the DATalloc_entry`` will be used before the DATinit. Additionally, if thei3cmasterbusinitfails, the DATcleanupwill execute before the device is detached, which will execue DATfreeentry` function. The above scenario can cause the driver to use DAT_data when it is NULL. - References
-
- https://git.kernel.org/stable/c/39c71357e68e2f03766f9321b9f4882e49ff1442
- https://git.kernel.org/stable/c/3cb79a365e7cce8f121bba91312e2ddd206b9781
- https://git.kernel.org/stable/c/b53e9758a31c683fc8615df930262192ed5f034b
- https://git.kernel.org/stable/c/e64d23dc65810be4e3395d72df0c398f60c991f9
- https://git.kernel.org/stable/c/eed74230435c61eeb58abaa275b1820e6a4b7f02