Description

In the Linux kernel, the following vulnerability has been resolved: platform/x86: int3472: Check for adev == NULL Not all devices have an ACPI companion fwnode, so adev might be NULL. This can e.g. (theoretically) happen when a user manually binds one of the int3472 drivers to another i2c/platform device through sysfs. Add a check for adev not being set and return -ENODEV in that case to avoid a possible NULL pointer deref in skl_int3472_get_acpi_buffer().

INFO

Published Date :

2025-02-27T02:12:05.675Z

Last Modified :

2025-11-03T19:33:26.924Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-58011 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-58011.

URL Resource
https://git.kernel.org/stable/c/0a30353beca2693d30bde477024d755ffecea514 cve-icon cve-icon
https://git.kernel.org/stable/c/46263a0b687a044e645387a9c7692ccd693f09f1 cve-icon cve-icon
https://git.kernel.org/stable/c/4f8b210823cc2d1f9d967f089a6c00d025bb237f cve-icon cve-icon
https://git.kernel.org/stable/c/a808ecf878ad646ebc9c83d9fc4ce72fd9c49d3d cve-icon cve-icon
https://git.kernel.org/stable/c/cd2fd6eab480dfc247b737cf7a3d6b009c4d0f1c cve-icon cve-icon
https://git.kernel.org/stable/c/f9c7cc44758f4930b41285a6d54afa8cbd9762b4 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025022656-CVE-2024-58011-5ed8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-58011 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-58011 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact