CVE-2023-52773

drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer() When ddc_service_construct() is called, it explicitly checks both the link type and whether there is something on the link which will dictate whether the pin is marked as hw_supported. If the pin isn't set or the link is not set (such as from unloading/reloading amdgpu in an IGT test) then fail the amdgpu_dm_i2c_xfer() call.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.05%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/fb5c134ca589fe670430acc9e7ebf2691ca2476d patch
https://git.kernel.org/stable/c/5b14cf37b9f01de0b28c6f8960019d4c7883ce42 patch
https://git.kernel.org/stable/c/1d07b7e84276777dad3c8cfebdf8e739606f90c9 patch
https://git.kernel.org/stable/c/b71f4ade1b8900d30c661d6c27f87c35214c398c patch

Frequently Asked Questions

What is the severity of CVE-2023-52773?
CVE-2023-52773 has been scored as a medium severity vulnerability.
How to fix CVE-2023-52773?
To fix CVE-2023-52773, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-52773 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2023-52773 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-52773?
CVE-2023-52773 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.