CVE-2024-39466

Summary

In the Linux kernel, the following vulnerability has been resolved:

thermal/drivers/qcom/lmh: Check for SCM availability at probe

Up until now, the necessary scm availability check has not been performed, leading to possible null pointer dereferences (which did happen for me on RB1).

Fix that.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux53bca371cdf7addc1e93e1b99285b3d3935685ec < 2226b145afa5e13cb60dbe77fb20fb0666a1caf3affected
LinuxLinux53bca371cdf7addc1e93e1b99285b3d3935685ec < 560d69c975072974c11434ca6953891e74c1a665affected
LinuxLinux53bca371cdf7addc1e93e1b99285b3d3935685ec < 0a47ba94ec3d8f782b33e3d970cfcb769b962464affected
LinuxLinux53bca371cdf7addc1e93e1b99285b3d3935685ec < aa1a0807b4a76b44fb6b58a7e9087cd4b18ab41baffected
LinuxLinux53bca371cdf7addc1e93e1b99285b3d3935685ec < d9d3490c48df572edefc0b64655259eefdcbb9beaffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.161 <= 5.15.*unaffected
LinuxLinux6.1.94 <= 6.1.*unaffected
LinuxLinux6.6.34 <= 6.6.*unaffected
LinuxLinux6.9.5 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References