CVE-2023-52840

Published: May 21, 2024Modified: Jun 17, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() The put_device() calls rmi_release_function() which frees "fn" so the dereference on the next line "fn->num_of_irqs" is a use after free. Move the put_device() to the end to fix this.

Affected (7)

Products: Linux: Linux Kernel

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 4.18 to 4.19.299
Linux Linux Kernel	From 4.20 to 5.4.261
Linux Linux Kernel	From 5.11 to 5.15.139
Linux Linux Kernel	From 5.16 to 6.1.63
Linux Linux Kernel	From 5.5 to 5.10.201
Linux Linux Kernel	From 6.2 to 6.5.12
Linux Linux Kernel	From 6.6 to 6.6.2

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (16)

https://git.kernel.org/stable/c/2f236d8638f5b43e0c72919a6a27fe286c32053f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/303766bb92c5c225cf40f9bbbe7e29749406e2f2

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/50d12253666195a14c6cd2b81c376e2dbeedbdff

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/6c71e065befb2fae8f1461559b940c04e1071bd5

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/7082b1fb5321037bc11ba1cf2d7ed23c6b2b521f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/c8e639f5743cf4b01f8c65e0df075fe4d782b585

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/cc56c4d17721dcb10ad4e9c9266e449be1462683

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/eb988e46da2e4eae89f5337e047ce372fe33d5b1

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/2f236d8638f5b43e0c72919a6a27fe286c32053f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/303766bb92c5c225cf40f9bbbe7e29749406e2f2

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/50d12253666195a14c6cd2b81c376e2dbeedbdff

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/6c71e065befb2fae8f1461559b940c04e1071bd5

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/7082b1fb5321037bc11ba1cf2d7ed23c6b2b521f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/c8e639f5743cf4b01f8c65e0df075fe4d782b585

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/cc56c4d17721dcb10ad4e9c9266e449be1462683

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/eb988e46da2e4eae89f5337e047ce372fe33d5b1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.