Lucene search
LinuxVULNRICHMENT:CVE-2024-38573HistoryJun 19, 2024 - 1:35 p.m.
CVE-2024-38573 cppc_cpufreq: Fix possible null pointer dereference
2024-06-1913:35:38
Linux
github.com
3
cppc_cpufreq
null pointer
linux kernel
vulnerability
svace
linux verification center
In the Linux kernel, the following vulnerability has been resolved:
cppc_cpufreq: Fix possible null pointer dereference
cppc_cpufreq_get_rate() and hisi_cppc_cpufreq_get_rate() can be called from
different places with various parameters. So cpufreq_cpu_get() can return
null as ‘policy’ in some circumstances.
Fix this bug by adding null return check.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "9a185cc5a79b",
"versionType": "git"
},
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "769c4f355b79",
"versionType": "git"
},
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "f84b9b25d045",
"versionType": "git"
},
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "b18daa4ec727",
"versionType": "git"
},
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "dfec15222529",
"versionType": "git"
},
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "cf7de25878a1",
"versionType": "git"
}
],
"programFiles": [
"drivers/cpufreq/cppc_cpufreq.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "5.11"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "5.11",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "5.15.161",
"versionType": "custom",
"lessThanOrEqual": "5.15.*"
},
{
"status": "unaffected",
"version": "6.1.93",
"versionType": "custom",
"lessThanOrEqual": "6.1.*"
},
{
"status": "unaffected",
"version": "6.6.33",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.8.12",
"versionType": "custom",
"lessThanOrEqual": "6.8.*"
},
{
"status": "unaffected",
"version": "6.9.3",
"versionType": "custom",
"lessThanOrEqual": "6.9.*"
},
{
"status": "unaffected",
"version": "6.10",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"drivers/cpufreq/cppc_cpufreq.c"
],
"defaultStatus": "affected"
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "9a185cc5a79b",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "769c4f355b79",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "f84b9b25d045",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "b18daa4ec727",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "dfec15222529",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:acrn:*:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "acrn",
"versions": [
{
"status": "affected",
"version": "a28b2bfc099c",
"lessThan": "cf7de25878a1",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "5.11"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "0",
"lessThan": "5.11",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "5.15.161",
"versionType": "custom",
"lessThanOrEqual": "5.16"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.1.93",
"versionType": "custom",
"lessThanOrEqual": "6.2"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.6.33",
"versionType": "custom",
"lessThanOrEqual": "6.7"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.8.12",
"versionType": "custom",
"lessThanOrEqual": "6.9"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.9.3",
"versionType": "custom",
"lessThanOrEqual": "6.10"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.10-rc1"
}
],
"defaultStatus": "unknown"
}
]References
git.kernel.org/stable/c/769c4f355b7962895205b86ad35617873feef9a5
git.kernel.org/stable/c/9a185cc5a79ba408e1c73375706630662304f618
git.kernel.org/stable/c/b18daa4ec727c0266de5bfc78e818d168cc4aedf
git.kernel.org/stable/c/cf7de25878a1f4508c69dc9f6819c21ba177dbfe
git.kernel.org/stable/c/dfec15222529d22b15e5b0d63572a9e39570cab4
git.kernel.org/stable/c/f84b9b25d045e67a7eee5e73f21278c8ab06713c
Related
cvelist
cvelist
CVE-2024-38573 cppc_cpufreq: Fix possible null pointer dereference
2024-06-19 13:35:38
osv
osv
UBUNTU-CVE-2024-38573
2024-06-19 14:15:00
CVE-2024-38573
2024-06-19 14:15:17
Important: kernel-rt security update
2024-08-21 14:52:36
debiancve
debiancve
CVE-2024-38573
2024-06-19 14:15:17
ubuntucve
ubuntucve
CVE-2024-38573
2024-06-19 00:00:00
cve
cve
CVE-2024-38573
2024-06-19 14:15:17
nvd
nvd
CVE-2024-38573
2024-06-19 14:15:17
redhatcve
redhatcve
CVE-2024-38573
2024-06-20 15:26:59
redhat
redhat
(RHSA-2024:6744) Moderate: kernel security update
2024-09-18 00:00:27
(RHSA-2024:6745) Moderate: kernel-rt security update
2024-09-18 00:00:55
nessus
nessus
RHEL 9 : kernel-rt (RHSA-2024:6745)
2024-09-18 00:00:00
RHEL 9 : kernel (RHSA-2024:6744)
2024-09-18 00:00:00
Oracle Linux 9 : kernel (ELSA-2024-6997)
2024-09-26 00:00:00
oraclelinux
oraclelinux
kernel security update
2024-09-24 00:00:00
kernel security update
2024-08-08 00:00:00
rocky
rocky
kernel-rt security update
2024-08-21 14:52:36
kernel security update
2024-09-17 00:57:33
kernel security update
2024-08-21 14:52:19
openvas
openvas
Ubuntu: Security Advisory (USN-7007-1)
2024-09-16 00:00:00
Ubuntu: Security Advisory (USN-7007-3)
2024-09-24 00:00:00
Ubuntu: Security Advisory (USN-7009-2)
2024-09-25 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel vulnerabilities
2024-08-09 00:00:00
mageia
mageia
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
AI Score
6.9
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-38573