CVE-2023-52708

Published: May 21, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mmc: mmc_spi: fix error handling in mmc_spi_probe() If mmc_add_host() fails, it doesn't need to call mmc_remove_host(), or it will cause null-ptr-deref, because of deleting a not added device in mmc_remove_host(). To fix this, goto label 'fail_glue_init', if mmc_add_host() fails, and change the label 'fail_add_host' to 'fail_gpiod_request'.

Vendor	Product	Versions
Linux	Linux	affected `15a0580ced081a0f7dc2deea8a4812bdc5e9a109 - < e9b488d60f51ae312006e224e03a30a151c28bdd` affected `15a0580ced081a0f7dc2deea8a4812bdc5e9a109 - < 0b3edcb24bd81b3b2e3dac89f4733bfd47d283be` affected `15a0580ced081a0f7dc2deea8a4812bdc5e9a109 - < ecad2fafd424ffdc203b2748ded0b37e4bbecef3` affected `15a0580ced081a0f7dc2deea8a4812bdc5e9a109 - < 82645bf4ed02abe930a659c5fe16d593a6dbd93f` affected `15a0580ced081a0f7dc2deea8a4812bdc5e9a109 - < cf4c9d2ac1e42c7d18b921bec39486896645b714`
Linux	Linux	affected `2.6.24` unaffected `0 - < 2.6.24` unaffected `5.4.232 - <= 5.4.` unaffected `5.10.169 - <= 5.10.` unaffected `5.15.95 - <= 5.15.*` +2 more versions

References

https://git.kernel.org/stable/c/e9b488d60f51ae312006e224e03a30a151c28bdd

https://git.kernel.org/stable/c/0b3edcb24bd81b3b2e3dac89f4733bfd47d283be

https://git.kernel.org/stable/c/ecad2fafd424ffdc203b2748ded0b37e4bbecef3

https://git.kernel.org/stable/c/82645bf4ed02abe930a659c5fe16d593a6dbd93f

https://git.kernel.org/stable/c/cf4c9d2ac1e42c7d18b921bec39486896645b714

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-52708

Description

Affected Products

References