CVE-2023-52465: power: supply: Fix null pointer dereference in smb2_probe
Description
In the Linux kernel, the following vulnerability has been resolved:
power: supply: Fix null pointer dereference in smb2_probe
devm_kasprintf and devm_kzalloc return a pointer to dynamically
allocated memory which can be NULL upon failure.
Classification
CVE ID: CVE-2023-52465
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 5.06% (scored less or equal to compared to others)
EPSS Date: 2025-02-03 (when was this score calculated)
References
https://git.kernel.org/stable/c/e2717302fbc20f148bcda362facee0444b949a3ahttps://git.kernel.org/stable/c/bd3d2ec447ede9da822addf3960a5f4275e3ae76
https://git.kernel.org/stable/c/88f04bc3e737155e13caddf0ba8ed19db87f0212