CVE-2023-23000

2023-03-0100:00:00

ubuntu.com

linux kernel

security

bugzilla

redhat

suse

error pointer

tegra_xusb_find_port_node

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the
tegra_xusb_find_port_node return value. Callers expect NULL in the error
case, but an error pointer is used.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-223.235UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-174.193UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-101.111UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1166.179UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1121.131UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1056.61UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1056.61~20.04.1UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1121.131~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1166.179~16.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1126.133UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-223.235	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-174.193	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-101.111	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1166.179	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1121.131	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1056.61	UNKNOWN
ubuntu	20.04	noarch	linux-aws-5.15	< 5.15.0-1056.61~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< 5.4.0-1121.131~18.04.1	UNKNOWN
ubuntu	16.04	noarch	linux-aws-hwe	< 4.15.0-1166.179~16.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1126.133	UNKNOWN