CVE-2024-56767

Summary

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset

The at_xdmac_memset_create_desc may return NULL, which will lead to a null pointer dereference. For example, the len input is error, or the atchan->free_descs_list is empty and memory is exhausted. Therefore, add check to avoid this.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < 3d229600c54e9e0909080ecaf1aab0642aefa5f0affected
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < ed1a8aaa344522c0c349ac9042db27ad130ef913affected
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < 8d364597de9ce2a5f52714224bfe6c2e7a29b303affected
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < fdba6d5e455388377ec7e82a5913ddfcc7edd93baffected
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < e658f1c133b854b2ae799147301d82dddb8f3162affected
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < 54376d8d26596f98ed7432a788314bb9154bf3e3affected
LinuxLinuxb206d9a23ac71cb905f5fb6e0cd813406f89b678 < c43ec96e8d34399bd9dab2f2dc316b904892133faffected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux5.4.289 <= 5.4.*unaffected
LinuxLinux5.10.233 <= 5.10.*unaffected
LinuxLinux5.15.176 <= 5.15.*unaffected
LinuxLinux6.1.123 <= 6.1.*unaffected
LinuxLinux6.6.69 <= 6.6.*unaffected
LinuxLinux6.12.8 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References