5.5
CVE-2024-42248
- EPSS 0.21%
- Veröffentlicht 07.08.2024 16:15:47
- Zuletzt bearbeitet 08.08.2024 20:55:35
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
tty: serial: ma35d1: Add a NULL check for of_node
In the Linux kernel, the following vulnerability has been resolved: tty: serial: ma35d1: Add a NULL check for of_node The pdev->dev.of_node can be NULL if the "serial" node is absent. Add a NULL check to return an error in such cases.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.5 < 6.6.41
Linux ≫ Linux Kernel Version >= 6.7 < 6.9.10
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.113 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://git.kernel.org/stable/c/0e0e15ab2d3a094a38525d23c03d78ec7d14a40e
https://git.kernel.org/stable/c/23efa74cfe6eb923abb5b9bc51b2a04879013c67
https://git.kernel.org/stable/c/acd09ac253b5de8fd79fc61a482ee19154914c7a