CVE-2023-52650: drm/tegra: dsi: Add missing check for of_find_device_by_node

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/tegra: dsi: Add missing check for of_find_device_by_node

Add check for the return value of of_find_device_by_node() and return
the error if it fails in order to avoid NULL pointer dereference.

Classification

CVE ID: CVE-2023-52650

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.06% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/47a13d0b9d8527518639ab5c39667f69d6203e80
https://git.kernel.org/stable/c/f05631a8525c3b5e5994ecb1304d2d878956c0f5
https://git.kernel.org/stable/c/92003981a6df5dc84af8a5904f8ee112fa324129
https://git.kernel.org/stable/c/93128052bf832359531c3c0a9e3567b2b8682a2d
https://git.kernel.org/stable/c/50c0ad785a780c72a2fdaba10b38c645ffb4eae6
https://git.kernel.org/stable/c/52aa507148c4aad41436e2005d742ffcafad9976
https://git.kernel.org/stable/c/c5d2342d24ef6e08fc90a529fe3dc59de421a2b9
https://git.kernel.org/stable/c/3169eaf1365541fd8e521091010c44fbe14691fc
https://git.kernel.org/stable/c/afe6fcb9775882230cd29b529203eabd5d2a638d

Timeline

2024-12-20 00:31:24 UTC
CVE

drm/tegra: dsi: Add missing check for of_find_device_by_node