CVE-2024-36014

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/arm/malidp: fix a possible null pointer dereference

In malidp_mw_connector_reset, new memory is allocated with kzalloc, but no check is performed. In order to prevent null pointer dereferencing, ensure that mw_state is checked before calling __drm_atomic_helper_connector_reset.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < b6cc5dd06336ed8bb3a7a1fc5aaf7d5e88bc0818affected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < 565d9ad7e5a18eb69ed8b66a9e9bb3f45346520caffected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < a5fa5b40a278a3ca978fed64707bd27614adb1ebaffected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < 3e54d4e95120641216dfe91a6c49f116a9f68490affected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < e4b52d49383306ef73fd1bd9102538beebb0fe07affected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < 335cc45ef2b81b68be63c698b4f867a530bdf7a5affected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < b77620730f614059db2470e8ebab3e725280fc6daffected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < 93f76ec1eddce60dbb5885cbc0d7df54adee4639affected
LinuxLinux8cbc5caf36ef7a299b5cbedf55f27fd898d700bf < a1f95aede6285dba6dd036d907196f35ae3a11eaaffected
LinuxLinux4.19affected
LinuxLinux0 < 4.19unaffected
LinuxLinux4.19.316 <= 4.19.*unaffected
LinuxLinux5.4.278 <= 5.4.*unaffected
LinuxLinux5.10.219 <= 5.10.*unaffected
LinuxLinux5.15.161 <= 5.15.*unaffected
LinuxLinux6.1.93 <= 6.1.*unaffected
LinuxLinux6.6.33 <= 6.6.*unaffected
LinuxLinux6.8.12 <= 6.8.*unaffected
LinuxLinux6.9.3 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References