QwikSec

Security Database

CVE

CWE

Training

CVE-2023-28328

Published: Apr 19, 2023

Modified: Mar 19, 2025

PUBLISHED

Description

A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash the system or potentially cause a denial of service.

Vendor	Product	Versions
n/a	Linux	affected `Linux Kernel prior to kernel 6.2 RC1 - < 6.2`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=2177389

[debian-lts-announce] 20230502 [SECURITY] [DLA 3404-1] linux-5.10 security update

mailing-list

[debian-lts-announce] 20230503 [SECURITY] [DLA 3403-1] linux security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.