CVE-2023-54248

EUVD-2023-60393
In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: Add check for kmemdup

Since the kmemdup may return NULL pointer,
it should be better to add check for the return value
in order to avoid NULL pointer dereference.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.158-1
fixed
bullseye
5.10.223-1
not-affected
bullseye (security)
5.10.247-1
fixed
forky
6.17.13-1
fixed
sid
6.17.13-1
fixed
trixie
6.12.57-1
fixed
trixie (security)
6.12.48-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/7898db22ed6cee909513cf4935b5f9f0298b74f0
https://git.kernel.org/stable/c/952bbfcedbf895963509861e55a6e4fc105eb842
https://git.kernel.org/stable/c/9f36704a58adade3b0216f8a3fa5503db4517208
https://git.kernel.org/stable/c/cdcdfd57f4c701f832787da1309cc6687917d783
https://git.kernel.org/stable/c/e6c3cef24cb0d045f99d5cb039b344874e3cfd74