CVE-2024-46685

Summary

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: single: fix potential NULL dereference in pcs_get_function()

pinmux_generic_get_function() can return NULL and the pointer 'function' was dereferenced without checking against NULL. Add checking of pointer 'function' in pcs_get_function().

Found by code review.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 0a2bab5ed161318f57134716accba0a30f3af191affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 2cea369a5c2e85ab14ae716da1d1cc6d25c85e11affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 4e9436375fcc9bd2a60ee96aba6ed53f7a377d10affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 6341c2856785dca7006820b127278058a180c075affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 8f0bd526921b6867c2f10a83cd4fd14139adcd92affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 4ed45fe99ec9e3c9478bd634624cd05a57d002f7affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 292151af6add3e5ab11b2e9916cffa5f52859a1faffected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 1c38a62f15e595346a1106025722869e87ffe044affected
LinuxLinux4.11affected
LinuxLinux0 < 4.11unaffected
LinuxLinux4.19.321 <= 4.19.*unaffected
LinuxLinux5.4.283 <= 5.4.*unaffected
LinuxLinux5.10.225 <= 5.10.*unaffected
LinuxLinux5.15.166 <= 5.15.*unaffected
LinuxLinux6.1.108 <= 6.1.*unaffected
LinuxLinux6.6.49 <= 6.6.*unaffected
LinuxLinux6.10.8 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References