NVD

CVE-2023-52858 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data Add the check for the return value of mtk_alloc_clk_data() in order to avoid NULL pointer dereference.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

ADP: CISA-ADP

Base Score: 6.2 MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL	Source(s)	Tag(s)
https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e	CVE, kernel.org	Patch
https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94	CVE, kernel.org	Patch

Weakness Enumeration

CWE-ID	CWE Name	Source
CWE-476	NULL Pointer Dereference	CISA-ADP

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

7 change records found show changes

CVE Modified by CISA-ADP 6/17/2026 2:43:45 AM

Action

Type

Old Value

New Value

Added

Affected

[{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"3b5e748615e7","status":"affected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"5.0","status":"affected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"5.4.261","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"5.10.201","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"5.15.139","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"6.1.63","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"6.5.12","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"6.6.2","status":"unaffected"}]},{"vendor":"linux","product":"linux_kernel","defaultStatus":"unknown","cpes":["cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"],"versions":[{"version":"6.7","status":"unaffected"}]}]

Added

SSVC

{"timestamp":"2024-05-21T19:00:23.134670Z","id":"CVE-2023-52858","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}

CVE Modified by kernel.org 6/17/2026 2:43:45 AM

Action

Type

Old Value

New Value

Added

Affected

Record truncated, showing 2048 of 2230 characters.
View Entire Change Record

[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/clk/mediatek/clk-mt7629.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e","versionType":"git","status":"affected"},{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"4f861b63945e076f9f003a5fad958174096df1ee","versionType":"git","status":"affected"},{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"e964d21dc034b650d719c4ea39564bec72b42f94","versionType":"git","status":"affected"},{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"a836efc21ef04608333d6d05753e558ebd1f85d0","versionType":"git","status":"affected"},{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"1d89430fc3158f872d492f1b88d07262f48290c0","versionType":"git","status":"affected"},{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"5fbea47eebff5daeca7d918c99289bcd3ae4dc8d","versionType":"git","status":"affected"},{"version":"3b5e748615e714711220b2a95d19bd25a037db09","lessThan":"2befa515c1bb6cdd33c262b909d93d1973a219aa","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/clk/mediatek/clk-mt7629.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"5.0","status":"affected"},{"version":"0","lessThan":"5.0","versionType":"semver","status":"unaffected"},{"version":"5.4.261","lessThanOrEqual":"5.4.*","versionType":"semver","status":"unaffected"},{"version":"5.10.201","lessThanOrEqual":"5.10.*","versionType":"semver","status":"unaffected"},{"version":"5.15.139","lessThanOrEqual":"5.15.*","versionType":"semver","status":"unaffected"},{"version":"6.1.63","lessThanOrEqual":"6.1.*","versionType":"semver","status":"unaffected"},{"version":"6.5.12","lessThanOrEqual":"6.5.*","versionType":"semver","status":"unaffected"},{"version":"6

Initial Analysis by NIST 4/02/2025 11:04:52 AM

Action	Type	New Value
Added	CPE Configuration	OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.6 up to (excluding) 6.6.2 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.2 up to (excluding) 6.5.12 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.16 up to (excluding) 6.1.63 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 up to (excluding) 5.15.139 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.5 up to (excluding) 5.10.201 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.0 up to (excluding) 5.4.261
Added	Reference Type	CVE: https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0 Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e Types: Patch
Added	Reference Type	CVE: https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94 Types: Patch

CVE Modified by CVE 11/21/2024 3:40:44 AM

Action	Type	New Value
Added	Reference	https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0
Added	Reference	https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa
Added	Reference	https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee
Added	Reference	https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d
Added	Reference	https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0
Added	Reference	https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e
Added	Reference	https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94

New CVE Received from kernel.org 5/21/2024 12:15:22 PM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data Add the check for the return value of mtk_alloc_clk_data() in order to avoid NULL pointer dereference.
Added	Reference	kernel.org https://git.kernel.org/stable/c/1d89430fc3158f872d492f1b88d07262f48290c0 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/2befa515c1bb6cdd33c262b909d93d1973a219aa [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/4f861b63945e076f9f003a5fad958174096df1ee [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/5fbea47eebff5daeca7d918c99289bcd3ae4dc8d [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/a836efc21ef04608333d6d05753e558ebd1f85d0 [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/e8ae4b49dd9cfde69d8de8c0c0cd7cf1b004482e [No types assigned]
Added	Reference	kernel.org https://git.kernel.org/stable/c/e964d21dc034b650d719c4ea39564bec72b42f94 [No types assigned]

Quick Info

CVE Dictionary Entry:
CVE-2023-52858
NVD Published Date:
05/21/2024
NVD Last Modified:
06/17/2026
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2023-52858 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

CVE Modified by CISA-ADP 6/17/2026 2:43:45 AM

CVE Modified by kernel.org 6/17/2026 2:43:45 AM

Initial Analysis by NIST 4/02/2025 11:04:52 AM

CVE Modified by CVE 11/21/2024 3:40:44 AM

CVE Modified by CISA-ADP 7/02/2024 9:44:06 PM

CVE Modified by kernel.org 5/29/2024 2:16:28 AM

New CVE Received from kernel.org 5/21/2024 12:15:22 PM

Quick Info