CVE-2024-56773

Summary

In the Linux kernel, the following vulnerability has been resolved:

kunit: Fix potential null dereference in kunit_device_driver_test()

kunit_kzalloc() may return a NULL pointer, dereferencing it without NULL check may lead to NULL dereference. Add a NULL check for test_state.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd03c720e03bd9bf0b784d80b5d3ede7e2daf3b6e < 5d28fac59369b5d3c48cdf09e50275a61ff91202affected
LinuxLinuxd03c720e03bd9bf0b784d80b5d3ede7e2daf3b6e < 435c20eed572a95709b1536ff78832836b2f91b1affected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.12.4 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References