CVE-2024-53230 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost() cpufreq_cpu_get_raw() may return NULL if the cpu is not in policy->cpus cpu mask and it will cause null pointer dereference, so check NULL for cppc_get_cpu_cost().

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/1975b481f644f8f841d9c188e3c214fce187f18b
https://git.kernel.org/stable/c/1a1374bb8c5926674973d849feed500bc61ad535
https://git.kernel.org/stable/c/6be57617a38b3f33266acecdb3c063c1c079aaf7
https://git.kernel.org/stable/c/afd22d9839359829776abb55cc9bc4946e888704
https://git.kernel.org/stable/c/f05ef81db63889f6f14eb77fd140dac6cedb6f7f

History

Fri, 27 Dec 2024 14:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost() cpufreq_cpu_get_raw() may return NULL if the cpu is not in policy->cpus cpu mask and it will cause null pointer dereference, so check NULL for cppc_get_cpu_cost().
Title		cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()
References		https://git.kernel.org/stable/c/1975b481f644f8f841d9c188e3c214fce187f18b https://git.kernel.org/stable/c/1a1374bb8c5926674973d849feed500bc61ad535 https://git.kernel.org/stable/c/6be57617a38b3f33266acecdb3c063c1c079aaf7 https://git.kernel.org/stable/c/afd22d9839359829776abb55cc9bc4946e888704 https://git.kernel.org/stable/c/f05ef81db63889f6f14eb77fd140dac6cedb6f7f

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-12-27T13:50:18.238Z

Updated: 2024-12-27T13:50:18.238Z

Reserved: 2024-11-19T17:17:25.025Z

Link: CVE-2024-53230

Vulnrichment

No data.

NVD

Status : Received

Published: 2024-12-27T14:15:31.290

Modified: 2024-12-27T14:15:31.290

Link: CVE-2024-53230

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-53230", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-11-19T17:17:25.025Z", "datePublished": "2024-12-27T13:50:18.238Z", "dateUpdated": "2024-12-27T13:50:18.238Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-12-27T13:50:18.238Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()\n\ncpufreq_cpu_get_raw() may return NULL if the cpu is not in\npolicy->cpus cpu mask and it will cause null pointer dereference,\nso check NULL for cppc_get_cpu_cost()."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/cpufreq/cppc_cpufreq.c"], "versions": [{"version": "740fcdc2c20ecf855b36b919d7fa1b872b5a7eae", "lessThan": "1975b481f644f8f841d9c188e3c214fce187f18b", "status": "affected", "versionType": "git"}, {"version": "740fcdc2c20ecf855b36b919d7fa1b872b5a7eae", "lessThan": "f05ef81db63889f6f14eb77fd140dac6cedb6f7f", "status": "affected", "versionType": "git"}, {"version": "740fcdc2c20ecf855b36b919d7fa1b872b5a7eae", "lessThan": "afd22d9839359829776abb55cc9bc4946e888704", "status": "affected", "versionType": "git"}, {"version": "740fcdc2c20ecf855b36b919d7fa1b872b5a7eae", "lessThan": "6be57617a38b3f33266acecdb3c063c1c079aaf7", "status": "affected", "versionType": "git"}, {"version": "740fcdc2c20ecf855b36b919d7fa1b872b5a7eae", "lessThan": "1a1374bb8c5926674973d849feed500bc61ad535", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/cpufreq/cppc_cpufreq.c"], "versions": [{"version": "5.19", "status": "affected"}, {"version": "0", "lessThan": "5.19", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.120", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.64", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.11.11", "lessThanOrEqual": "6.11.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.2", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.13-rc1", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/1975b481f644f8f841d9c188e3c214fce187f18b"}, {"url": "https://git.kernel.org/stable/c/f05ef81db63889f6f14eb77fd140dac6cedb6f7f"}, {"url": "https://git.kernel.org/stable/c/afd22d9839359829776abb55cc9bc4946e888704"}, {"url": "https://git.kernel.org/stable/c/6be57617a38b3f33266acecdb3c063c1c079aaf7"}, {"url": "https://git.kernel.org/stable/c/1a1374bb8c5926674973d849feed500bc61ad535"}], "title": "cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()", "x_generator": {"engine": "bippy-5f407fcff5a0"}}}}