CVE-2023-52917

ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

MITRE

In the Linux kernel, the following vulnerability has been resolved:

ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()

The debugfs_create_dir() function returns error pointers.
It never returns NULL. So use IS_ERR() to check it.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-21 CVE Reserved
2024-10-21 CVE Published
2024-10-25 EPSS Updated
2024-11-19 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (10)

URL	Tag	Source
https://git.kernel.org/stable/c/e26a5843f7f5014ae4460030ca4de029a3ac35d3	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/20cbc281033ef5324f67f2d54bc539968f937255	2024-11-08
https://git.kernel.org/stable/c/4b2fbba4e44630a59b09d32627b63c4ffdf70f78	2024-11-08
https://git.kernel.org/stable/c/ef7e34237e2612b116a84c9640628a6f7a0d693e	2024-10-17
https://git.kernel.org/stable/c/a429158f2e0a7a03eb67fd5e204e1f6735c725aa	2024-10-17
https://git.kernel.org/stable/c/7cbd6d7fb9ba2be03978809c848e2e50eaeead2c	2024-10-17
https://git.kernel.org/stable/c/16e5bed6c1883b19f9fcbdff996aa3381954d5f3	2024-10-04
https://git.kernel.org/stable/c/b66bf833e72a1e23d7ccafc0f8f74e80f8c357b5	2024-10-04
https://git.kernel.org/stable/c/babba8595d1e5d57313a6187f3e51aceacc6881a	2024-10-04
https://git.kernel.org/stable/c/e229897d373a87ee09ec5cc4ecd4bb2f895fc16b	2024-09-20

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 4.19.323 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 4.19.323"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 5.4.285 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 5.4.285"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 5.10.227 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 5.10.227"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 5.15.168 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 5.15.168"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.1.113 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.1.113"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.6.54 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.6.54"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.10.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.10.13"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.11.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.11.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.12 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.12"		en		Affected