CVE-2023-54093
Published: Dec 24, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: anysee: fix null-ptr-deref in anysee_master_xfer In anysee_master_xfer, msg is controlled by user. When msg[i].buf is null and msg[i].len is zero, former checks on msg[i].buf would be passed. Malicious data finally reach anysee_master_xfer. If accessing msg[i].buf[0] without sanity check, null ptr deref would happen. We add check on msg[i].len to prevent crash. Similar commit: commit 0ed554fd769a ("media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()") [hverkuil: add spaces around +]
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a51e34dd6080d8d5c9e95a4e0292cd4cb889a61b - < 73c0b224ceeba12dee2a7a8cbc147648da0b2e63affected a51e34dd6080d8d5c9e95a4e0292cd4cb889a61b - < e04affec2506ff5c12a18d78d7e694b3556a8982affected a51e34dd6080d8d5c9e95a4e0292cd4cb889a61b - < 8dc5b370254abc10f0cb4141d90cecf7ce465472affected a51e34dd6080d8d5c9e95a4e0292cd4cb889a61b - < 4a9763d2bc4a6d6fab42555b9c0b2eefa32585acaffected a51e34dd6080d8d5c9e95a4e0292cd4cb889a61b - < 3dd5846a873938ec7b6d404ec27662942cd8f2ef+3 more versions |
Linux | Linux | affected 2.6.27unaffected 0 - < 2.6.27unaffected 4.14.326 - <= 4.14.*unaffected 4.19.295 - <= 4.19.*unaffected 5.4.257 - <= 5.4.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now