CVE-2024-56711

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-56711
In the Linux kernel, the following vulnerability has been resolved: drm/panel: himax-hx83102: Add a check to prevent NULL pointer dereference drm_mode_duplicate() could return NULL due to lack of memory, which will then call NULL pointer dereference. Add a check to prevent it.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/747547972e647509815ad8530ff09d62220a56c2 Patch
https://git.kernel.org/stable/c/e1e1af9148dc4c866eda3fb59cd6ec3c7ea34b1d Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.13:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.13:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.13:rc3:*:*:*:*:*:*
History

08 Jan 2025, 16:46

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/747547972e647509815ad8530ff09d62220a56c2 - () https://git.kernel.org/stable/c/747547972e647509815ad8530ff09d62220a56c2 - Patch
References () https://git.kernel.org/stable/c/e1e1af9148dc4c866eda3fb59cd6ec3c7ea34b1d - () https://git.kernel.org/stable/c/e1e1af9148dc4c866eda3fb59cd6ec3c7ea34b1d - Patch
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/panel: himax-hx83102: Agregar una comprobación para evitar la desreferencia de puntero NULL drm_mode_duplicate() podría devolver NULL debido a la falta de memoria, lo que luego invocará la desreferencia de puntero NULL. Agregue una comprobación para evitarlo.
CWE CWE-476
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5
First Time Linux linux Kernel
Linux
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.13:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.13:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.13:rc3:*:*:*:*:*:*

29 Dec 2024, 09:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-12-29 09:15

Updated : 2025-01-08 16:46

NVD link : CVE-2024-56711

Mitre link : CVE-2024-56711

CVE.ORG link : CVE-2024-56711

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-476

NULL Pointer Dereference