Lucene search

K
vulnrichmentLinuxVULNRICHMENT:CVE-2024-38622
HistoryJun 21, 2024 - 10:18 a.m.

CVE-2024-38622 drm/msm/dpu: Add callback function pointer check before its call

2024-06-2110:18:15
Linux
github.com
1
linux kernel
vulnerability
fixed
drm/msm/dpu
callback function
pointer check
conditional return

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dpu: Add callback function pointer check before its call

In dpu_core_irq_callback_handler() callback function pointer is compared to NULL,
but then callback function is unconditionally called by this pointer.
Fix this bug by adding conditional return.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Patchwork: https://patchwork.freedesktop.org/patch/588237/

CNA Affected

[
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "c929ac60b3ed",
        "lessThan": "873f67699114",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "c929ac60b3ed",
        "lessThan": "9078630ed7f8",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "c929ac60b3ed",
        "lessThan": "530f272053a5",
        "versionType": "git"
      }
    ],
    "programFiles": [
      "drivers/gpu/drm/msm/disp/dpu1/dpu_hw_interrupts.c"
    ],
    "defaultStatus": "unaffected"
  },
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "5.19"
      },
      {
        "status": "unaffected",
        "version": "0",
        "lessThan": "5.19",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "6.6.33",
        "versionType": "custom",
        "lessThanOrEqual": "6.6.*"
      },
      {
        "status": "unaffected",
        "version": "6.9.4",
        "versionType": "custom",
        "lessThanOrEqual": "6.9.*"
      },
      {
        "status": "unaffected",
        "version": "6.10-rc1",
        "versionType": "original_commit_for_fix",
        "lessThanOrEqual": "*"
      }
    ],
    "programFiles": [
      "drivers/gpu/drm/msm/disp/dpu1/dpu_hw_interrupts.c"
    ],
    "defaultStatus": "affected"
  }
]

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

Related for VULNRICHMENT:CVE-2024-38622