PT-2025-8765 · Linux+6 · Linux Kernel+6

Publicado

2024-12-02

·

Atualizado

2026-01-19

·

CVE-2024-57978

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A potential error pointer dereference issue has been identified in the Linux kernel, specifically in the imx-jpeg module. The problem arises when the jpeg->pd dev[i] pointer is an error pointer and is passed to the pm runtime suspended() function, leading to a potential Oops. The existing conditions check for both error pointers and NULL, but it is recommended to use the IS ERR OR NULL() check for clarity.
Recommendations For the Linux kernel, consider applying the fix that uses the IS ERR OR NULL() check to prevent potential error pointer dereferences in the detach pm() function.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

AZL-58033
BDU:2025-12221
CVE-2024-57978
DLA-4102-1
OESA-2025-1339
OESA-2025-1340
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1
USN-7510-1
USN-7510-2
USN-7510-3
USN-7510-4
USN-7510-5
USN-7510-6
USN-7510-7
USN-7510-8
USN-7511-1
USN-7511-2
USN-7511-3
USN-7512-1
USN-7521-1
USN-7521-2
USN-7521-3
USN-7593-1
USN-7602-1

Produtos afetados

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu