Lucene search
LinuxVULNRICHMENT:CVE-2024-38584HistoryJun 19, 2024 - 1:37 p.m.
CVE-2024-38584 net: ti: icssg_prueth: Fix NULL pointer dereference in prueth_probe()
2024-06-1913:37:40
Linux
github.com
3
vulnerability resolution
null pointer dereference
linux kernel
ti
icssg_prueth
prueth_probe
emac_phy_connect
of_phy_connect
phy_attached_info.
In the Linux kernel, the following vulnerability has been resolved:
net: ti: icssg_prueth: Fix NULL pointer dereference in prueth_probe()
In the prueth_probe() function, if one of the calls to emac_phy_connect()
fails due to of_phy_connect() returning NULL, then the subsequent call to
phy_attached_info() will dereference a NULL pointer.
Check the return code of emac_phy_connect and fail cleanly if there is an
error.
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "128d5874c082",
"lessThan": "5cd17f0e74cb",
"versionType": "git"
},
{
"status": "affected",
"version": "128d5874c082",
"lessThan": "b0a82ebabbdc",
"versionType": "git"
},
{
"status": "affected",
"version": "128d5874c082",
"lessThan": "1e1d5bd7f468",
"versionType": "git"
},
{
"status": "affected",
"version": "128d5874c082",
"lessThan": "b31c7e780861",
"versionType": "git"
}
],
"programFiles": [
"drivers/net/ethernet/ti/icssg/icssg_prueth.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "6.6"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "6.6",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "6.6.33",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.8.12",
"versionType": "custom",
"lessThanOrEqual": "6.8.*"
},
{
"status": "unaffected",
"version": "6.9.3",
"versionType": "custom",
"lessThanOrEqual": "6.9.*"
},
{
"status": "unaffected",
"version": "6.10",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"drivers/net/ethernet/ti/icssg/icssg_prueth.c"
],
"defaultStatus": "affected"
}
]Related
nvd
nvd
CVE-2024-38584
2024-06-19 14:15:18
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2024-38584
2024-06-19 00:00:00
debiancve
debiancve
CVE-2024-38584
2024-06-19 14:15:18
osv
osv
CVE-2024-38584
2024-06-19 14:15:00
linux-oem-6.8 vulnerabilities
2024-08-12 18:05:26
linux-azure vulnerabilities
2024-08-13 18:11:04
redhatcve
redhatcve
CVE-2024-38584
2024-06-20 15:28:49
cve
cve
CVE-2024-38584
2024-06-19 14:15:18
openvas
openvas
Ubuntu: Security Advisory (USN-6952-1)
2024-08-09 00:00:00
Ubuntu: Security Advisory (USN-6949-1)
2024-08-09 00:00:00
Ubuntu: Security Advisory (USN-6955-1)
2024-08-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel (OEM) vulnerabilities
2024-08-12 00:00:00
Linux kernel vulnerabilities
2024-08-09 00:00:00
nessus
nessus
Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)
2024-08-08 00:00:00
Ubuntu 24.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6952-2)
2024-08-13 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6952-1)
2024-08-09 00:00:00
mageia
mageia
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
AI Score
7
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-38584