CVE-2024-56767

dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset The at_xdmac_memset_create_desc may return NULL, which will lead to a
null pointer dereference. For example, the len input is error, or the
atchan->free_descs_list is empty and memory is exhausted. Therefore, add
check to avoid this.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: dmaengine: at_xdmac: evitar null_prt_deref en at_xdmac_prep_dma_memset El parámetro at_xdmac_memset_create_desc puede devolver NULL, lo que provocará una desreferencia de puntero nulo. Por ejemplo, la entrada len es un error o la lista atchan->free_descs_list está vacía y la memoria está agotada. Por lo tanto, agregue una comprobación para evitar esto.

In the Linux kernel, the following vulnerability has been resolved: dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset The at_xdmac_memset_create_desc may return NULL, which will lead to a null pointer dereference. For example, the len input is error, or the atchan->free_descs_list is empty and memory is exhausted. Therefore, add check to avoid this.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-12-29 CVE Reserved
2025-01-06 CVE Published
2025-01-06 CVE Updated
2025-01-08 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (5)

URL	Tag	Source
https://git.kernel.org/stable/c/b206d9a23ac71cb905f5fb6e0cd813406f89b678	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/fdba6d5e455388377ec7e82a5913ddfcc7edd93b	2025-01-02
https://git.kernel.org/stable/c/e658f1c133b854b2ae799147301d82dddb8f3162	2025-01-02
https://git.kernel.org/stable/c/54376d8d26596f98ed7432a788314bb9154bf3e3	2025-01-02
https://git.kernel.org/stable/c/c43ec96e8d34399bd9dab2f2dc316b904892133f	2024-12-02

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.1.123 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.1.123"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.6.69 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.6.69"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.12.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.12.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.2 < 6.13-rc5 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.2 < 6.13-rc5"		en		Affected