In the Linux kernel, the following vulnerability has been resolved:
ASoC: fsl-asoc-card: set priv->pdev before using it
priv->pdev pointer was set after being used in
fsl_asoc_card_audmux_init().
Move this assignment at the start of the probe function, so
sub-functions can correctly use pdev through priv.
fsl_asoc_card_audmux_init() dereferences priv->pdev to get access to the
dev struct, used with dev_err macros.
As priv is zero-initialised, there would be a NULL pointer dereference.
Note that if priv->dev is dereferenced before assignment but never used,
for example if there is no error to be printed, the driver won't crash
probably due to compiler optimisations.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 22 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-476 |
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-07-29T16:26:29.288Z
Updated: 2024-09-11T17:33:01.199Z
Reserved: 2024-07-29T15:50:41.171Z
Link: CVE-2024-42089
Vulnrichment
Updated: 2024-09-11T12:42:14.084Z
NVD
Status : Awaiting Analysis
Published: 2024-07-29T17:15:11.520
Modified: 2024-07-30T13:33:30.653
Link: CVE-2024-42089
Redhat