CVE-2024-38546

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm: vc4: Fix possible null pointer dereference

In vc4_hdmi_audio_init() of_get_address() may return NULL which is later dereferenced. Fix this bug by adding NULL check.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < 2d9adecc88ab678785b581ab021f039372c324cbaffected
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < 6cf1874aec42058a5ad621a23b5b2f248def0e96affected
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < 80431ea3634efb47a3004305d76486db9dd8ed49affected
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < 42c22b63056cea259d5313bf138a834840af85a5affected
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < 2a345fe928c21de6f3c3c7230ff509d715153a31affected
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < bd7827d46d403f8cdb43d16744cb1114e4726b21affected
LinuxLinuxbb7d78568814a31a11fa14f1479a9fe51f1582ad < c534b63bede6cb987c2946ed4d0b0013a52c5ba7affected
LinuxLinux4.12affected
LinuxLinux0 < 4.12unaffected
LinuxLinux5.10.219 <= 5.10.*unaffected
LinuxLinux5.15.161 <= 5.15.*unaffected
LinuxLinux6.1.93 <= 6.1.*unaffected
LinuxLinux6.6.33 <= 6.6.*unaffected
LinuxLinux6.8.12 <= 6.8.*unaffected
LinuxLinux6.9.3 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References