In the Linux kernel, the following vulnerability has been resolved:
net: ll_temac: platform_get_resource replaced by wrong function
The function platform_get_resource was replaced with
devm_platform_ioremap_resource_byname and is called using 0 as name.
This eventually ends up in platform_get_resource_byname in the call
stack, where it causes a null pointer in strcmp.
if (type == resource_type(r) && !strcmp(r->name, name))
It should have been replaced with devm_platform_ioremap_resource.
Metrics
Affected Vendors & Products
References
History
Tue, 05 Nov 2024 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 29 Oct 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 19 Sep 2024 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-248 |
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-05-17T13:23:07.558Z
Updated: 2024-11-05T09:22:31.510Z
Reserved: 2024-05-17T12:19:12.339Z
Link: CVE-2024-35796
Vulnrichment
Updated: 2024-08-02T03:21:47.618Z
NVD
Status : Awaiting Analysis
Published: 2024-05-17T14:15:11.673
Modified: 2024-11-05T10:16:37.803
Link: CVE-2024-35796
Redhat