In the Linux kernel, the following vulnerability has been resolved:
thermal/drivers/tsens: Fix null pointer dereference
compute_intercept_slope() is called from calibrate_8960() (in tsens-8960.c)
as compute_intercept_slope(priv, p1, NULL, ONE_PT_CALIB) which lead to null
pointer dereference (if DEBUG or DYNAMIC_DEBUG set).
Fix this bug by adding null pointer check.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/thermal/qcom/tsens.c"
],
"versions": [
{
"version": "dfc1193d4dbd",
"lessThan": "27600e0c5272",
"status": "affected",
"versionType": "git"
},
{
"version": "dfc1193d4dbd",
"lessThan": "11c731386ed8",
"status": "affected",
"versionType": "git"
},
{
"version": "dfc1193d4dbd",
"lessThan": "2d5ca6e4a287",
"status": "affected",
"versionType": "git"
},
{
"version": "dfc1193d4dbd",
"lessThan": "06d17744b77b",
"status": "affected",
"versionType": "git"
},
{
"version": "dfc1193d4dbd",
"lessThan": "fcf5f1b5f308",
"status": "affected",
"versionType": "git"
},
{
"version": "dfc1193d4dbd",
"lessThan": "d998ddc86a27",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/thermal/qcom/tsens.c"
],
"versions": [
{
"version": "5.13",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.13",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.161",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.93",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.33",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8.12",
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9.3",
"lessThanOrEqual": "6.9.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10-rc1",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]
git.kernel.org/stable/c/06d17744b77bc6cb29a6c785f4fad8c4163ee653
git.kernel.org/stable/c/11c731386ed82053c2759b6fea1a82ae946e5e0f
git.kernel.org/stable/c/27600e0c5272a262b0903e35ae1df37d33c5c1ad
git.kernel.org/stable/c/2d5ca6e4a2872e92a32fdfd87e04dd7d3ced7278
git.kernel.org/stable/c/d998ddc86a27c92140b9f7984ff41e3d1d07a48f
git.kernel.org/stable/c/fcf5f1b5f308f2eb422f6aca55d295b25890906b