CVE-2024-42074

Summary

In the Linux kernel, the following vulnerability has been resolved:

ASoC: amd: acp: add a null check for chip_pdev structure

When acp platform device creation is skipped, chip->chip_pdev value will remain NULL. Add NULL check for chip->chip_pdev structure in snd_acp_resume() function to avoid null pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux088a40980efbc2c449b72f0f2c7ebd82f71d08e2 < e158ed266fc1adfa456880fb6dabce2e5623843baffected
LinuxLinux088a40980efbc2c449b72f0f2c7ebd82f71d08e2 < b0c39ae1cc86afe74aa2f6273ccb514f8d180cf6affected
LinuxLinux088a40980efbc2c449b72f0f2c7ebd82f71d08e2 < 98d919dfee1cc402ca29d45da642852d7c9a2301affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux6.6.37 <= 6.6.*unaffected
LinuxLinux6.9.8 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References