CVE-2024-42081

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/xe_devcoredump: Check NULL before assignments

Assign 'xe_devcoredump_snapshot *' and 'xe_device *' only if 'coredump' is not NULL.

v2

  • Fix commit messages.

v3

  • Define variables before code.(Ashutosh/Jose)

v4

  • Drop return check for coredump_to_xe. (Jose/Rodrigo)

v5

  • Modify misleading commit message. (Matt)

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxdd08ebf6c3525a7ea2186e636df064ea47281987 < 76ec0e33707282d5321555698d902f4e067aff37affected
LinuxLinuxdd08ebf6c3525a7ea2186e636df064ea47281987 < b15e65349553b1689d15fbdebea874ca5ae2274aaffected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.9.8 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References