CVE-2023-52693

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-52693
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52693.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-52693
Downstream
Related
Published
2024-05-17T14:27:26.514Z
Modified
2026-03-23T05:00:12.724849621Z
Summary
ACPI: video: check for error while searching for backlight device parent
Details

In the Linux kernel, the following vulnerability has been resolved:

ACPI: video: check for error while searching for backlight device parent

If acpigetparent() called in acpivideodevregisterbacklight() fails, for example, because acpiutacquiremutex() fails inside acpigetparent), this can lead to incorrect (uninitialized) acpiparent handle being passed to acpigetpci_dev() for detecting the parent pci device.

Check acpigetparent() result and set parent device only in case of success.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52693.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
9661e92c10a9775243c1ecb73373528ed8725a10
Fixed
556f02699d33c1f40b1b31bd25828ce08fa165d8
Fixed
1e3a2b9b4039bb4d136dca59fb31e06465e056f3
Fixed
c4e1a0ef0b4782854c9b77a333ca912b392bed2f
Fixed
3a370502a5681986f9828e43be75ce26c6ab24af
Fixed
2124c5bc22948fc4d09a23db4a8acdccc7d21e95
Fixed
39af144b6d01d9b40f52e5d773e653957e6c379c
Fixed
72884ce4e10417b1233b614bf134da852df0f15f
Fixed
ccd45faf4973746c4f30ea41eec864e5cf191099

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52693.json"