CVE-2024-47749
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
RDMA/cxgb4: Added NULL check for lookup_atid
The lookup_atid() function can return NULL if the ATID is
invalid or does not exist in the identifier table, which
could lead to dereferencing a null pointer without a
check in the act_establish() and act_open_rpl() functions.
Add a NULL check to prevent null pointer dereferencing.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < b12e25d91c7f97958341538c7dc63ee49d01548f | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < 4e1fe68d695af367506ea3c794c5969630f21697 | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < dd598ac57dcae796cb58551074660c39b43fb155 | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < b11318dc8a1ec565300bb1a9073095af817cc508 | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < 39cb9f39913566ec5865581135f3e8123ad1aee1 | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < 0d50ae281a1712b9b2ca72830a96b8f11882358d | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < 54aaa3ed40972511e423b604324b881425b9ff1e | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < b9c94c8ba5a713817cffd74c4bacc05187469624 | affected |
| Linux | Linux | cfdda9d764362ab77b11a410bb928400e6520d57 < e766e6a92410ca269161de059fff0843b8ddd65f | affected |
| Linux | Linux | 2.6.35 | affected |
| Linux | Linux | 0 < 2.6.35 | unaffected |
| Linux | Linux | 4.19.323 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.285 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.227 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.168 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.113 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.54 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.13 <= 6.10.* | unaffected |
| Linux | Linux | 6.11.2 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
References
- https://git.kernel.org/stable/c/b12e25d91c7f97958341538c7dc63ee49d01548f
- https://git.kernel.org/stable/c/4e1fe68d695af367506ea3c794c5969630f21697
- https://git.kernel.org/stable/c/dd598ac57dcae796cb58551074660c39b43fb155
- https://git.kernel.org/stable/c/b11318dc8a1ec565300bb1a9073095af817cc508
- https://git.kernel.org/stable/c/39cb9f39913566ec5865581135f3e8123ad1aee1
- https://git.kernel.org/stable/c/0d50ae281a1712b9b2ca72830a96b8f11882358d
- https://git.kernel.org/stable/c/54aaa3ed40972511e423b604324b881425b9ff1e
- https://git.kernel.org/stable/c/b9c94c8ba5a713817cffd74c4bacc05187469624
- https://git.kernel.org/stable/c/e766e6a92410ca269161de059fff0843b8ddd65f
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.