Description

In the Linux kernel, the following vulnerability has been resolved: Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() The put_device() calls rmi_release_function() which frees "fn" so the dereference on the next line "fn->num_of_irqs" is a use after free. Move the put_device() to the end to fix this.

INFO

Published Date :

2024-05-21T15:31:39.862Z

Last Modified :

2025-05-04T07:44:06.206Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52840 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
  • Rhel Eus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52840.

URL Resource
https://git.kernel.org/stable/c/2f236d8638f5b43e0c72919a6a27fe286c32053f cve-icon cve-icon
https://git.kernel.org/stable/c/303766bb92c5c225cf40f9bbbe7e29749406e2f2 cve-icon cve-icon
https://git.kernel.org/stable/c/50d12253666195a14c6cd2b81c376e2dbeedbdff cve-icon cve-icon
https://git.kernel.org/stable/c/6c71e065befb2fae8f1461559b940c04e1071bd5 cve-icon cve-icon
https://git.kernel.org/stable/c/7082b1fb5321037bc11ba1cf2d7ed23c6b2b521f cve-icon cve-icon
https://git.kernel.org/stable/c/c8e639f5743cf4b01f8c65e0df075fe4d782b585 cve-icon cve-icon
https://git.kernel.org/stable/c/cc56c4d17721dcb10ad4e9c9266e449be1462683 cve-icon cve-icon
https://git.kernel.org/stable/c/eb988e46da2e4eae89f5337e047ce372fe33d5b1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052111-CVE-2023-52840-8a3d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52840 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52840 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact