NVD

CVE-2023-52696 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opal_powercap_init() kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

ADP: CISA-ADP

Base Score: 7.5 HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink	Resource
https://git.kernel.org/stable/c/69f95c5e9220f77ce7c540686b056c2b49e9a664	Patch
https://git.kernel.org/stable/c/69f95c5e9220f77ce7c540686b056c2b49e9a664	Patch
https://git.kernel.org/stable/c/6b58d16037217d0c64a2a09b655f370403ec7219	Patch
https://git.kernel.org/stable/c/6b58d16037217d0c64a2a09b655f370403ec7219	Patch
https://git.kernel.org/stable/c/9da4a56dd3772570512ca58aa8832b052ae910dc	Patch
https://git.kernel.org/stable/c/9da4a56dd3772570512ca58aa8832b052ae910dc	Patch
https://git.kernel.org/stable/c/a67a04ad05acb56640798625e73fa54d6d41cce1	Patch
https://git.kernel.org/stable/c/a67a04ad05acb56640798625e73fa54d6d41cce1	Patch
https://git.kernel.org/stable/c/b02ecc35d01a76b4235e008d2dd292895b28ecab	Patch
https://git.kernel.org/stable/c/b02ecc35d01a76b4235e008d2dd292895b28ecab	Patch
https://git.kernel.org/stable/c/e123015c0ba859cf48aa7f89c5016cc6e98e018d	Patch
https://git.kernel.org/stable/c/e123015c0ba859cf48aa7f89c5016cc6e98e018d	Patch
https://git.kernel.org/stable/c/f152a6bfd187f67afeffc9fd68cbe46f51439be0	Patch
https://git.kernel.org/stable/c/f152a6bfd187f67afeffc9fd68cbe46f51439be0	Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html	Mailing List Third Party Advisory

Weakness Enumeration

CWE-ID	CWE Name	Source
CWE-476	NULL Pointer Dereference	CISA-ADP

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

7 change records found show changes

Initial Analysis by NIST 4/07/2025 3:05:16 PM

Action	Type	New Value
Added	CPE Configuration	OR cpe:2.3:o:debian:debian_linux:10.0:::::::
Added	CPE Configuration	Record truncated, showing 500 of 675 characters. View Entire Change Record OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.16 up to (excluding) 6.1.75 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.2 up to (excluding) 6.6.14 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.7 up to (excluding) 6.7.2 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.20 up to (excluding) 5.4.268 cpe:2.3:o:linux:linux_kernel::::::*
Added	Reference Type	CVE: https://git.kernel.org/stable/c/69f95c5e9220f77ce7c540686b056c2b49e9a664 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/6b58d16037217d0c64a2a09b655f370403ec7219 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/9da4a56dd3772570512ca58aa8832b052ae910dc Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/a67a04ad05acb56640798625e73fa54d6d41cce1 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/b02ecc35d01a76b4235e008d2dd292895b28ecab Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/e123015c0ba859cf48aa7f89c5016cc6e98e018d Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/f152a6bfd187f67afeffc9fd68cbe46f51439be0 Types: Patch
Added	Reference Type	CVE: https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html Types: Mailing List, Third Party Advisory
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/69f95c5e9220f77ce7c540686b056c2b49e9a664 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/6b58d16037217d0c64a2a09b655f370403ec7219 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/9da4a56dd3772570512ca58aa8832b052ae910dc Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/a67a04ad05acb56640798625e73fa54d6d41cce1 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/b02ecc35d01a76b4235e008d2dd292895b28ecab Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/e123015c0ba859cf48aa7f89c5016cc6e98e018d Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/f152a6bfd187f67afeffc9fd68cbe46f51439be0 Types: Patch

CVE Modified by CVE 11/21/2024 3:40:22 AM

Action	Type	New Value
Added	Reference	https://git.kernel.org/stable/c/69f95c5e9220f77ce7c540686b056c2b49e9a664
Added	Reference	https://git.kernel.org/stable/c/6b58d16037217d0c64a2a09b655f370403ec7219
Added	Reference	https://git.kernel.org/stable/c/9da4a56dd3772570512ca58aa8832b052ae910dc
Added	Reference	https://git.kernel.org/stable/c/a67a04ad05acb56640798625e73fa54d6d41cce1
Added	Reference	https://git.kernel.org/stable/c/b02ecc35d01a76b4235e008d2dd292895b28ecab
Added	Reference	https://git.kernel.org/stable/c/e123015c0ba859cf48aa7f89c5016cc6e98e018d
Added	Reference	https://git.kernel.org/stable/c/f152a6bfd187f67afeffc9fd68cbe46f51439be0
Added	Reference	https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html

New CVE Received from kernel.org 5/17/2024 11:15:20 AM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opal_powercap_init() kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure.
Added	Reference	kernel.org https://git.kernel.org/stable/c/69f95c5e9220f77ce7c540686b056c2b49e9a664 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/6b58d16037217d0c64a2a09b655f370403ec7219 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/9da4a56dd3772570512ca58aa8832b052ae910dc [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/a67a04ad05acb56640798625e73fa54d6d41cce1 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/b02ecc35d01a76b4235e008d2dd292895b28ecab [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/e123015c0ba859cf48aa7f89c5016cc6e98e018d [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/f152a6bfd187f67afeffc9fd68cbe46f51439be0 [No types assigned]

Quick Info

CVE Dictionary Entry:
CVE-2023-52696
NVD Published Date:
05/17/2024
NVD Last Modified:
04/07/2025
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2023-52696 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

Initial Analysis by NIST 4/07/2025 3:05:16 PM

CVE Modified by CVE 11/21/2024 3:40:22 AM

CVE Modified by kernel.org 11/04/2024 8:16:47 AM

CVE Modified by CISA-ADP 7/02/2024 9:43:47 PM

CVE Modified by kernel.org 6/25/2024 5:15:54 PM

CVE Modified by kernel.org 5/29/2024 2:15:57 AM

New CVE Received from kernel.org 5/17/2024 11:15:20 AM

Quick Info