CVE-2024-50173
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/panthor: Fix access to uninitialized variable in tick_ctx_cleanup()
The group variable can't be used to retrieve ptdev in our second loop, because it points to the previously iterated list_head, not a valid group. Get the ptdev object from the scheduler instead.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | d72f049087d4f973f6332b599c92177e718107de < ac2ca5e5148a0d4d78ac01c2d8348d0757c7367f | affected |
| Linux | Linux | d72f049087d4f973f6332b599c92177e718107de < 3bde05794497d5f426d4ea2ecb9868bf7721fb24 | affected |
| Linux | Linux | d72f049087d4f973f6332b599c92177e718107de < 282864cc5d3f144af0cdea1868ee2dc2c5110f0d | affected |
| Linux | Linux | 6.10 | affected |
| Linux | Linux | 0 < 6.10 | unaffected |
| Linux | Linux | 6.10.14 <= 6.10.* | unaffected |
| Linux | Linux | 6.11.3 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/ac2ca5e5148a0d4d78ac01c2d8348d0757c7367f
- https://git.kernel.org/stable/c/3bde05794497d5f426d4ea2ecb9868bf7721fb24
- https://git.kernel.org/stable/c/282864cc5d3f144af0cdea1868ee2dc2c5110f0d
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.