CVE-2023-52492

Advisory lineage Upstream: 0 Downstream: 27

Downstream

DEBIAN-CVE-2023-52492 DLA-3842-1 DSA-5681-1 RHSA-2024:8856 RHSA-2024:8870 RHSA-2024:9315

Analyzed

Published: 29 Feb 2024, 15:52

Last modified:11 May 2026, 19:28

Vulnerability Summary

Overall Risk (default)

low

18/100

CVSS Score

4.4 MEDIUM

v3.1 (cve.org)

EPSS Score

<0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

29 Feb 2024, 15:52

Published

Vulnerability first disclosed

11 May 2026, 19:28

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: fix NULL pointer in channel unregistration function __dma_async_device_channel_register() can fail. In case of failure, chan->local is freed (with free_percpu()), and chan->local is nullified. When dma_async_device_unregister() is called (because of managed API or intentionally by DMA controller driver), channels are unconditionally unregistered, leading to this NULL pointer: [ 1.318693] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000d0 [...] [ 1.484499] Call trace: [ 1.486930] device_del+0x40/0x394 [ 1.490314] device_unregister+0x20/0x7c [ 1.494220] __dma_async_device_channel_unregister+0x68/0xc0 Look at dma_async_device_register() function error path, channel device unregistration is done only if chan->local is not NULL. Then add the same condition at the beginning of __dma_async_device_channel_unregister() function, to avoid NULL pointer issue whatever the API used to reach this function.

CVSS Metrics

v3.1•MEDIUM•Score: 4.4CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 0%

Techniques & Countermeasures

CWE-476•NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

debian•debian_linux
10.0
linux•linux
≥ d2fb0a0438384fee08a418025f743913020033ce, < 9de69732dde4e443c1c7f89acbbed2c45a6a8e17 | ≥ d2fb0a0438384fee08a418025f743913020033ce, < 047fce470412ab64cb7345f9ff5d06919078ad79 | ≥ d2fb0a0438384fee08a418025f743913020033ce, < 2ab32986a0b9e329eb7f8f04dd57cc127f797c08 | ≥ d2fb0a0438384fee08a418025f743913020033ce, < 7f0ccfad2031eddcc510caf4e57f2d4aa2d8a50b | ≥ d2fb0a0438384fee08a418025f743913020033ce, < 9263fd2a63487c6d04cbb7b74a48fb12e1e352d0 | ≥ d2fb0a0438384fee08a418025f743913020033ce, < f5c24d94512f1b288262beda4d3dcb9629222fc7 | 5.6
linux•linux_kernel
≥ 5.6, < 5.10.210 | ≥ 5.11, < 5.15.149 | ≥ 5.16, < 6.1.76 | ≥ 6.2, < 6.6.15 | ≥ 6.7, < 6.7.3