CVE-2024-58020

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: multitouch: Add NULL check in mt_input_configured

devm_kasprintf() can return a NULL pointer on failure,but this returned value in mt_input_configured() is not checked. Add NULL check in mt_input_configured(), to handle kernel NULL pointer dereference error.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxdf7ca43fe090e1a56c216c8ebc106ef5fd49afc6 < a04d96ef67a42165f93194eef22a270acba4b74caffected
LinuxLinux15ec7cb55e7d88755aa01d44a7a1015a42bfce86 < a6bfd3856e9f3da083f177753c623d58ba935e0aaffected
LinuxLinuxdde88ab4e45beb60b217026207aa9c14c88d71ab < 2052b44cd0a62b6fdbe3371e5ba6029c56c400caaffected
LinuxLinux2763732ec1e68910719c75b6b896e11b6d3d622b < 4e7113f591163d99adc7cbcd7295030c8c5d3fc7affected
LinuxLinux4794394635293a3e74591351fff469cea7ad15a2 < 62f8bf06262b6fc55c58f4c5256140f1382f3b01affected
LinuxLinux4794394635293a3e74591351fff469cea7ad15a2 < aa879ef6d3acf96fa2c7122d0632061d4ea58d48affected
LinuxLinux4794394635293a3e74591351fff469cea7ad15a2 < 97c09cc2e72769edb6994b531edcfa313b96badeaffected
LinuxLinux4794394635293a3e74591351fff469cea7ad15a2 < 9b8e2220d3a052a690b1d1b23019673e612494c5affected
LinuxLinuxac0d389402a6ff9ad92cea02c2d8c711483b91abaffected
LinuxLinux39c70c19456e50dcb3abfe53539220dff0490f1daffected
LinuxLinux1d7833db9fd118415dace2ca157bfa603dec9c8caffected
LinuxLinuxb70ac7849248ec8128fa12f86e3655ba38838f29affected
LinuxLinux5.4.257 < 5.4.291affected
LinuxLinux5.10.195 < 5.10.235affected
LinuxLinux5.15.132 < 5.15.179affected
LinuxLinux6.1.53 < 6.1.129affected
LinuxLinux4.14.326 < 4.15affected
LinuxLinux4.19.295 < 4.20affected
LinuxLinux6.4.16 < 6.5affected
LinuxLinux6.5.3 < 6.6affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux5.4.291 <= 5.4.*unaffected
LinuxLinux5.10.235 <= 5.10.*unaffected
LinuxLinux5.15.179 <= 5.15.*unaffected
LinuxLinux6.1.129 <= 6.1.*unaffected
LinuxLinux6.6.79 <= 6.6.*unaffected
LinuxLinux6.12.16 <= 6.12.*unaffected
LinuxLinux6.13.4 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

Additional References

References