Wind River Support Network

HomeDefectsLIN1022-3622
Fixed

LIN1022-3622 : Security Advisory - linux - CVE-2023-28328

Created: Mar 14, 2023    Updated: Apr 20, 2023
Resolved Date: Mar 20, 2023
Found In Version: 10.22.33.1
Fix Version: 10.22.33.5
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel

Description

A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash the system or potentially cause a denial of service.

https://nvd.nist.gov/vuln/detail/CVE-2023-28328

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube