CVE-2024-38615

Summary

In the Linux kernel, the following vulnerability has been resolved:

cpufreq: exit() callback is optional

The exit() callback is optional and shouldn't be called without checking a valid pointer first.

Also, we must clear freq_table pointer even if the exit() callback isn't present.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < 2d730b465e377396d2a09a53524b96b111f7ccb6affected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < dfc56ff5ec9904c008e9376d90a6d7e2d2bec4d3affected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < 35db5e76d5e9f752476df5fa0b9018a2398b0378affected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < 8bc9546805e572ad101681437a49939f28777273affected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < 3e99f060cfd2e36504d62c9132b453ade5027e1caffected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < ae37ebca325097d773d7bb6ec069123b30772872affected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < a8204d1b6ff762d2171d365c2c8560285d0a233daffected
LinuxLinux91a12e91dc39137906d929a4ff6f9c32c59697fa < b8f85833c05730d631576008daaa34096bc7f3ceaffected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.278 <= 5.4.*unaffected
LinuxLinux5.10.219 <= 5.10.*unaffected
LinuxLinux5.15.161 <= 5.15.*unaffected
LinuxLinux6.1.93 <= 6.1.*unaffected
LinuxLinux6.6.33 <= 6.6.*unaffected
LinuxLinux6.8.12 <= 6.8.*unaffected
LinuxLinux6.9.3 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References