CVE-2023-54304

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-54304

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54304.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-54304

Downstream

BELL-CVE-2023-54304

DEBIAN-CVE-2023-54304

SUSE-SU-2026:0263-1

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

UBUNTU-CVE-2023-54304

Related

Published

2025-12-30T12:23:38.495Z

Modified

2026-03-31T17:29:18.602113968Z

Summary

firmware: meson_sm: fix to avoid potential NULL pointer dereference

Details

In the Linux kernel, the following vulnerability has been resolved:

firmware: meson_sm: fix to avoid potential NULL pointer dereference

ofmatchdevice() may fail and returns a NULL pointer.

Fix this by checking the return value of ofmatchdevice.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54304.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

525ae72d9f0b5cf027f1c78c84e41c90e86df026

Fixed

fba9c24c196310546f13c77ff66d0741155fa771

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

8cde3c2153e8f57be884c0e73f18bc4de150e870

Fixed

9f4017cac70c04090dd4f672e755d6c875af67d8

Fixed

502dfc5875bab9ae5d6a2939146c2c5e5683be40

Fixed

bd3a6b6d5dd863dbbe17985c7612159cf4533cad

Fixed

68f3209546b5083f8bffa46f7173cc05191eace1

Fixed

2d6c4a1a4e6678cb98dd57964f133a995ecc91c1

Fixed

f2ed165619c16577c02b703a114a1f6b52026df4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54304.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.195

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.132

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.53

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.4.16

Type: ECOSYSTEM
Events: Introduced

6.5.0

Fixed

6.5.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54304.json"