CVE-2024-26770

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: nvidia-shield: Add missing null pointer checks to LED initialization

devm_kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity.

[jkosina@suse.com: tweak changelog a bit]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux09308562d4afb1abc66366608fa1cb9de783272f < 83527a13740f57b45f162e3af4c7db4b88521100affected
LinuxLinux09308562d4afb1abc66366608fa1cb9de783272f < e71cc4a1e584293deafff1a7dea614b0210d0443affected
LinuxLinux09308562d4afb1abc66366608fa1cb9de783272f < b6eda11c44dc89a681e1c105f0f4660e69b1e183affected
LinuxLinux6.5affected
LinuxLinux0 < 6.5unaffected
LinuxLinux6.6.19 <= 6.6.*unaffected
LinuxLinux6.7.7 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References