Unrated severityNVD Advisory· Published Feb 23, 2024· Updated May 4, 2025
media: v4l: async: Fix duplicated list deletion
CVE-2023-52459
Description
In the Linux kernel, the following vulnerability has been resolved:
media: v4l: async: Fix duplicated list deletion
The list deletion call dropped here is already called from the helper function in the line before. Having a second list_del() call results in either a warning (with CONFIG_DEBUG_LIST=y):
list_del corruption, c46c8198->next is LIST_POISON1 (00000100)
If CONFIG_DEBUG_LIST is disabled the operation results in a kernel error due to NULL pointer dereference.
Affected products
4- osv-coords2 versionspkg:rpm/opensuse/kernel-source&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/kernel-source-longterm&distro=openSUSE%20Tumbleweed
< 6.7.9-1.1+ 1 more
- (no CPE)range: < 6.7.9-1.1
- (no CPE)range: < 6.12.11-1.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.