Lucene search

K

GoogleOSV:CVE-2024-35916

HistoryMay 19, 2024 - 9:15 a.m.

CVE-2024-35916

2024-05-1909:15:00

Google

osv.dev

linux kernel

vulnerability resolved

dma-buf

null pointer

memory allocation

mock_chain

dma_fence_enable_sw_signaling

linux verification center

svace

software

AI Score

6.6

Confidence

Low

In the Linux kernel, the following vulnerability has been resolved: dma-buf: Fix NULL pointer dereference in sanitycheck() If due to a memory allocation failure mock_chain() returns NULL, it is passed to dma_fence_enable_sw_signaling() resulting in NULL pointer dereference there. Call dma_fence_enable_sw_signaling() only if mock_chain() succeeds. Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

git.kernel.org/linus/2295bd846765c766701e666ed2e4b35396be25e6

git.kernel.org/stable/c/0336995512cdab0c65e99e4cdd47c4606debe14e

git.kernel.org/stable/c/156c226cbbdcf5f3bce7b2408a33b59fab7fae2c

git.kernel.org/stable/c/2295bd846765c766701e666ed2e4b35396be25e6

git.kernel.org/stable/c/eabf131cba1db12005a68378305f13b9090a7a6b

ubuntu.com/security/CVE-2024-35916

ubuntu.com/security/notices/USN-6893-1

ubuntu.com/security/notices/USN-6893-2

ubuntu.com/security/notices/USN-6893-3

ubuntu.com/security/notices/USN-6918-1

www.cve.org/CVERecord?id=CVE-2024-35916

AI Score

6.6

Confidence

Low

Related for OSV:CVE-2024-35916

redhatcve1 cvelist1 ubuntucve1 nvd1 vulnrichment1 cve1 debiancve1 osv7 nessus6 ubuntu4 openvas4