Vulnerability Details : CVE-2023-31081
An issue was discovered in drivers/media/test-drivers/vidtv/vidtv_bridge.c in the Linux kernel 6.2. There is a NULL pointer dereference in vidtv_mux_stop_thread. In vidtv_stop_streaming, after dvb->mux=NULL occurs, it executes vidtv_mux_stop_thread(dvb->mux).
Vulnerability category: Memory Corruption
Products affected by CVE-2023-31081
- cpe:2.3:o:linux:linux_kernel:6.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-31081
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 14 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-31081
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2023-31081
-
The product dereferences a pointer that it expects to be valid but is NULL.Assigned by: nvd@nist.gov (Primary)
References for CVE-2023-31081
-
https://bugzilla.suse.com/show_bug.cgi?id=1210782
1210782 – (CVE-2023-31081) VUL-0: CVE-2023-31081: kernel: NULL pointer dereference in vidtv_mux_stop_thread
-
https://lore.kernel.org/all/CA+UBctDXyiosaiR7YNKCs8k0aWu4gU+YutRcnC+TDJkXpHjQag%40mail.gmail.com/
BUG: general protection fault in vidtv_mux_stop_thread - Yu Hao
-
https://security.netapp.com/advisory/ntap-20230929-0003/
April 2023 Linux Kernel 6.2 Vulnerabilities in NetApp Products | NetApp Product Security
-
https://lore.kernel.org/all/CA+UBctDXyiosaiR7YNKCs8k0aWu4gU+YutRcnC+TDJkXpHjQag@mail.gmail.com/
BUG: general protection fault in vidtv_mux_stop_thread - Yu HaoExploit;Mailing List;Vendor Advisory
Jump to