{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-53425","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-09-17T14:54:09.742Z","datePublished":"2025-09-18T16:04:07.335Z","dateUpdated":"2026-05-11T19:44:43.847Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:44:43.847Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: platform: mediatek: vpu: fix NULL ptr dereference\n\nIf pdev is NULL, then it is still dereferenced.\n\nThis fixes this smatch warning:\n\ndrivers/media/platform/mediatek/vpu/mtk_vpu.c:570 vpu_load_firmware() warn: address of NULL pointer 'pdev'"}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/platform/mediatek/vpu/mtk_vpu.c"],"versions":[{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"099e929e7477f37ca16738fc158d7101c0189ca1","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"1b3f25d3894a091abc247eadab266a2c9be64389","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"c1c5826223ae05a48d21f6708c6f34ee9006238c","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"2caeb722f0ea5d2d24af30bb1753a89d449b6aa0","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"776b34615a29551d69d82a0082e7319d5ea284bd","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"b7bd48f0be84e24d21aa3a8f59a8a9cb8633a1c4","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"4d299e6e0ac3cf8ab4517dc29c9294bc4bf72398","status":"affected","versionType":"git"},{"version":"3003a180ef6b9462f3cccc2a89884ef2332d2a1c","lessThan":"3df55cd773e8603b623425cc97b05e542854ad27","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/platform/mediatek/vpu/mtk_vpu.c"],"versions":[{"version":"4.8","status":"affected"},{"version":"0","lessThan":"4.8","status":"unaffected","versionType":"semver"},{"version":"4.14.324","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.293","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.255","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.192","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.128","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.47","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.4.12","lessThanOrEqual":"6.4.*","status":"unaffected","versionType":"semver"},{"version":"6.5","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"4.14.324"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"4.19.293"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.4.255"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.10.192"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.15.128"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"6.1.47"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"6.4.12"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"6.5"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/099e929e7477f37ca16738fc158d7101c0189ca1"},{"url":"https://git.kernel.org/stable/c/1b3f25d3894a091abc247eadab266a2c9be64389"},{"url":"https://git.kernel.org/stable/c/c1c5826223ae05a48d21f6708c6f34ee9006238c"},{"url":"https://git.kernel.org/stable/c/2caeb722f0ea5d2d24af30bb1753a89d449b6aa0"},{"url":"https://git.kernel.org/stable/c/776b34615a29551d69d82a0082e7319d5ea284bd"},{"url":"https://git.kernel.org/stable/c/b7bd48f0be84e24d21aa3a8f59a8a9cb8633a1c4"},{"url":"https://git.kernel.org/stable/c/4d299e6e0ac3cf8ab4517dc29c9294bc4bf72398"},{"url":"https://git.kernel.org/stable/c/3df55cd773e8603b623425cc97b05e542854ad27"}],"title":"media: platform: mediatek: vpu: fix NULL ptr dereference","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":5.5,"attackVector":"LOCAL","baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","integrityImpact":"NONE","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"LOW","confidentialityImpact":"NONE"}},{"other":{"type":"ssvc","content":{"id":"CVE-2023-53425","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2026-01-14T19:13:22.579680Z"}}}],"problemTypes":[{"descriptions":[{"lang":"en","type":"CWE","cweId":"CWE-476","description":"CWE-476 NULL Pointer Dereference"}]}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-01-14T19:23:08.607Z"}}]}}