Description

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails Calling a6xx_destroy() before adreno_gpu_init() leads to a null pointer dereference on: msm_gpu_cleanup() : platform_set_drvdata(gpu->pdev, NULL); as gpu->pdev is only assigned in: a6xx_gpu_init() |_ adreno_gpu_init |_ msm_gpu_init() Instead of relying on handwavy null checks down the cleanup chain, explicitly de-allocate the LLC data and free a6xx_gpu instead. Patchwork: https://patchwork.freedesktop.org/patch/588919/

INFO

Published Date :

2024-06-21T10:18:13.639Z

Last Modified :

2025-05-04T12:56:41.038Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-38390 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-38390.

URL Resource
https://git.kernel.org/stable/c/247849eeb3fd88f8990ed73e33af70d5c10f9aec cve-icon cve-icon
https://git.kernel.org/stable/c/46d4efcccc688cbacdd70a238bedca510acaa8e4 cve-icon cve-icon
https://git.kernel.org/stable/c/617e3d1680504a3f9d88e1582892c68be155498f cve-icon cve-icon
https://git.kernel.org/stable/c/a1955a6df91355fef72a3a254700acd3cc1fec0d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024062138-CVE-2024-38390-395e@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-38390 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-38390 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact