CVE-2023-52708
- Source
- https://cve.org/CVERecord?id=CVE-2023-52708
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52708.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-52708
- Downstream
- Related
- Published
- 2024-05-21T15:22:55.975Z
- Modified
- 2026-03-14T12:16:51.760671Z
- Summary
- mmc: mmc_spi: fix error handling in mmc_spi_probe()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mmc: mmcspi: fix error handling in mmcspi_probe()
If mmcaddhost() fails, it doesn't need to call mmcremovehost(), or it will cause null-ptr-deref, because of deleting a not added device in mmcremovehost().
To fix this, goto label 'failglueinit', if mmcaddhost() fails, and change the label 'failaddhost' to 'failgpiodrequest'.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52708.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/0b3edcb24bd81b3b2e3dac89f4733bfd47d283be
- https://git.kernel.org/stable/c/82645bf4ed02abe930a659c5fe16d593a6dbd93f
- https://git.kernel.org/stable/c/cf4c9d2ac1e42c7d18b921bec39486896645b714
- https://git.kernel.org/stable/c/e9b488d60f51ae312006e224e03a30a151c28bdd
- https://git.kernel.org/stable/c/ecad2fafd424ffdc203b2748ded0b37e4bbecef3
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52708.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-52708
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced15a0580ced081a0f7dc2deea8a4812bdc5e9a109Fixede9b488d60f51ae312006e224e03a30a151c28bddFixed0b3edcb24bd81b3b2e3dac89f4733bfd47d283beFixedecad2fafd424ffdc203b2748ded0b37e4bbecef3Fixed82645bf4ed02abe930a659c5fe16d593a6dbd93fFixedcf4c9d2ac1e42c7d18b921bec39486896645b714