6.5

CVE-2024-27028

spi: spi-mt65xx: Fix NULL pointer access in interrupt handler

In the Linux kernel, the following vulnerability has been resolved:

spi: spi-mt65xx: Fix NULL pointer access in interrupt handler

The TX buffer in spi_transfer can be a NULL pointer, so the interrupt
handler may end up writing to the invalid memory and cause crashes.

Add a check to trans->tx_buf before using it.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.11 < 4.19.311
LinuxLinux Kernel Version >= 4.20 < 5.4.273
LinuxLinux Kernel Version >= 5.5 < 5.10.214
LinuxLinux Kernel Version >= 5.11 < 5.15.153
LinuxLinux Kernel Version >= 5.16 < 6.1.83
LinuxLinux Kernel Version >= 6.2 < 6.6.23
LinuxLinux Kernel Version >= 6.7 < 6.7.11
LinuxLinux Kernel Version >= 6.8 < 6.8.2
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.18% 0.635
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.5 3.9 2.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Third Party Advisory
Mailing List
https://git.kernel.org/stable/c/1784053cf10a14c4ebd8a890bad5cfe1bee51713
Patch
https://git.kernel.org/stable/c/2342b05ec5342a519e00524a507f7a6ea6791a38
Patch
https://git.kernel.org/stable/c/55f8ea6731aa64871ee6aef7dba53ee9f9f3b2f6
Patch
https://git.kernel.org/stable/c/62b1f837b15cf3ec2835724bdf8577e47d14c753
Patch
https://git.kernel.org/stable/c/766ec94cc57492eab97cbbf1595bd516ab0cb0e4
Patch
https://git.kernel.org/stable/c/a20ad45008a7c82f1184dc6dee280096009ece55
Patch
https://git.kernel.org/stable/c/bcfcdf19698024565eff427706ebbd8df65abd11
Patch
https://git.kernel.org/stable/c/bea82355df9e1c299625405b1947fc9b26b4c6d4
Patch
https://git.kernel.org/stable/c/c10fed329c1c104f375a75ed97ea3abef0786d62
Patch