CVE-2024-27047

2024-05-0100:00:00

ubuntu.com

linux kernel

net

vulnerability

fixed

phy

array

driver

device-tree

7.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON

In the Linux kernel, the following vulnerability has been resolved: net:
phy: fix phy_get_internal_delay accessing an empty array The
phy_get_internal_delay function could try to access to an empty array in
the case that the driver is calling phy_get_internal_delay without defining
delay_values and rx-internal-delay-ps or tx-internal-delay-ps is defined to
0 in the device-tree. This will lead to “unable to handle kernel NULL
pointer dereference at virtual address 0”. To avoid this kernel oops, the
test should be delay >= 0. As there is already delay < 0 test just before,
the test could only be size == 0.

OSVersionArchitecturePackageVersionFilename
ubuntu22.04noarchlinux< 5.15.0-112.122UNKNOWN
ubuntu23.10noarchlinux< anyUNKNOWN
ubuntu24.04noarchlinux< 6.8.0-35.35UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1063.69UNKNOWN
ubuntu23.10noarchlinux-aws< anyUNKNOWN
ubuntu24.04noarchlinux-aws< 6.8.0-1009.9UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1063.69~20.04.1UNKNOWN
ubuntu22.04noarchlinux-aws-6.5< anyUNKNOWN
ubuntu22.04noarchlinux-azure< 5.15.0-1066.75UNKNOWN
ubuntu23.10noarchlinux-azure< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	22.04	noarch	linux	< 5.15.0-112.122	UNKNOWN
ubuntu	23.10	noarch	linux	< any	UNKNOWN
ubuntu	24.04	noarch	linux	< 6.8.0-35.35	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1063.69	UNKNOWN
ubuntu	23.10	noarch	linux-aws	< any	UNKNOWN
ubuntu	24.04	noarch	linux-aws	< 6.8.0-1009.9	UNKNOWN
ubuntu	20.04	noarch	linux-aws-5.15	< 5.15.0-1063.69~20.04.1	UNKNOWN
ubuntu	22.04	noarch	linux-aws-6.5	< any	UNKNOWN
ubuntu	22.04	noarch	linux-azure	< 5.15.0-1066.75	UNKNOWN
ubuntu	23.10	noarch	linux-azure	< any	UNKNOWN