CVE-2024-42277

Summary

In the Linux kernel, the following vulnerability has been resolved:

iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en

In sprd_iommu_cleanup() before calling function sprd_iommu_hw_en() dom->sdev is equal to NULL, which leads to null dereference.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux92c089a931fd3939cd32318cf4f54e69e8f51a19 < 8c79ceb4ecf823e6ec10fee6febb0fca3de79922affected
LinuxLinux8745f3592ee4a7b49ede16ddd3f12a41ecaa23c9 < dfe90030a0cfa26dca4cb6510de28920e5ad22fbaffected
LinuxLinux9afea57384d4ae7b2034593eac7fa76c7122762a < b62841e49a2b7938f6fdeaaf93fb57e4eb880bdbaffected
LinuxLinux9afea57384d4ae7b2034593eac7fa76c7122762a < d5fe884ce28c5005f8582c35333c195a168f841caffected
LinuxLinux9afea57384d4ae7b2034593eac7fa76c7122762a < 630482ee0653decf9e2482ac6181897eb6cde5b8affected
LinuxLinuxd0a917fd5e3b3ed9d9306b4260ba684b982da9f3affected
LinuxLinux5.15.113 < 5.15.165affected
LinuxLinux6.1.81 < 6.1.103affected
LinuxLinux6.3.4 < 6.4affected
LinuxLinux6.4affected
LinuxLinux0 < 6.4unaffected
LinuxLinux5.15.165 <= 5.15.*unaffected
LinuxLinux6.1.103 <= 6.1.*unaffected
LinuxLinux6.6.44 <= 6.6.*unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References