CVE-2024-50069

Summary

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: apple: check devm_kasprintf() returned value

devm_kasprintf() can return a NULL pointer on failure but this returned value is not checked. Fix this lack and check the returned value.

Found by code review.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa0f160ffcb83de6a04fa75f9e7bdfe969f2863f7 < 0a4d4dbef622ac8796a6665e0080da2685f9220aaffected
LinuxLinuxa0f160ffcb83de6a04fa75f9e7bdfe969f2863f7 < fad940e2dd789155f99ecafa71a7baf6f96530bcaffected
LinuxLinuxa0f160ffcb83de6a04fa75f9e7bdfe969f2863f7 < 4d2296fb7c80fdc9925d29a8e85d617cad08731aaffected
LinuxLinuxa0f160ffcb83de6a04fa75f9e7bdfe969f2863f7 < 665a58fe663ac7a9ea618dc0b29881649324b116affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.1.114 <= 6.1.*unaffected
LinuxLinux6.6.58 <= 6.6.*unaffected
LinuxLinux6.11.5 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References