-

CVE-2026-53338

net: airoha: Add NULL check for of_reserved_mem_lookup() in airoha_qdma_init_hfwd_queues()

In the Linux kernel, the following vulnerability has been resolved:

net: airoha: Add NULL check for of_reserved_mem_lookup() in airoha_qdma_init_hfwd_queues()

of_reserved_mem_lookup() may return NULL if the reserved memory region
referenced by the "memory-region" phandle is not found in the reserved
memory table (e.g. due to a misconfigured DTS or a removed
memory-region node).  The current code dereferences the returned
pointer without checking for NULL, leading to a kernel NULL pointer
dereference at the following lines:

    dma_addr = rmem->base;                          // line 1156
    num_desc = div_u64(rmem->size, buf_size);       // line 1160

Add a NULL check after of_reserved_mem_lookup() and return -ENODEV if
the lookup fails, which is consistent with the existing error handling
for of_parse_phandle() failure in the same code block.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version 3a1ce9e3d01bbf3912c3e3f81cb554d558eb715b
Version < 01f7d4b504580664d36faea5671cde5e3f0d8a5b
Status affected
Version 3a1ce9e3d01bbf3912c3e3f81cb554d558eb715b
Version < cdb96c42db7b256348f9b57718debfaa4bca6b39
Status affected
Version 3a1ce9e3d01bbf3912c3e3f81cb554d558eb715b
Version < f9f25118faa4dd2b6e3d14a03d123bbdbd59925d
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 6.16
Status affected
Version 0
Version < 6.16
Status unaffected
Version <= 6.18.*
Version 6.18.36
Status unaffected
Version <= 7.0.*
Version 7.0.13
Status unaffected
Version <= *
Version 7.1
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.05
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/01f7d4b504580664d36faea5671cde5e3f0d8a5b
https://git.kernel.org/stable/c/cdb96c42db7b256348f9b57718debfaa4bca6b39
https://git.kernel.org/stable/c/f9f25118faa4dd2b6e3d14a03d123bbdbd59925d