5.5

CVE-2024-38546

drm: vc4: Fix possible null pointer dereference

In the Linux kernel, the following vulnerability has been resolved:

drm: vc4: Fix possible null pointer dereference

In vc4_hdmi_audio_init() of_get_address() may return
NULL which is later dereferenced. Fix this bug by adding NULL check.

Found by Linux Verification Center (linuxtesting.org) with SVACE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.12 < 5.10.219
LinuxLinux Kernel Version >= 5.11 < 5.15.161
LinuxLinux Kernel Version >= 5.16 < 6.1.93
LinuxLinux Kernel Version >= 6.2 < 6.6.33
LinuxLinux Kernel Version >= 6.7 < 6.8.12
LinuxLinux Kernel Version >= 6.9 < 6.9.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.162
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/2a345fe928c21de6f3c3c7230ff509d715153a31
Patch
https://git.kernel.org/stable/c/2d9adecc88ab678785b581ab021f039372c324cb
Patch
https://git.kernel.org/stable/c/42c22b63056cea259d5313bf138a834840af85a5
Patch
https://git.kernel.org/stable/c/6cf1874aec42058a5ad621a23b5b2f248def0e96
Patch
https://git.kernel.org/stable/c/80431ea3634efb47a3004305d76486db9dd8ed49
Patch
https://git.kernel.org/stable/c/bd7827d46d403f8cdb43d16744cb1114e4726b21
Patch
https://git.kernel.org/stable/c/c534b63bede6cb987c2946ed4d0b0013a52c5ba7
Patch