Ma Ke

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A vulnerability has been identified in the Linux kernel related to the pinctrl: stm32 component. The issue arises from the function devm kasprintf() which can return a NULL pointer on failure, but this returned value is not checked. This lack of checking can lead to potential issues. The problem was discovered through a code review. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A vulnerability in the Linux kernel has been identified where the `devm kasprintf()` function's returned value is not checked, potentially leading to a NULL pointer on failure. This issue was discovered through a code review. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a potential NULL dereference in the `pcs get function()` function. The `pinmux generic get function()` can return NULL, and the pointer `function` was dereferenced without checking against NULL. This could allow an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.58 **Description** A NULL pointer dereference issue has been identified in the mt7996 mcu sta bfer he routine when adding an sta interface to the mt7996 driver. This issue was found through a code review. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited. **Recommendations** For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider disabling the `mt7996 mcu sta bfer he` routine until a patch is available. Restrict access to the vulnerable `mt76` module to minimize the risk of exploitation. Avoid using the `sta` interface in the affected `mt7996` driver until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A vulnerability in the Linux kernel has been resolved by adding a missing check for alloc ordered workqueue in the omapdrm module. This check is necessary because alloc ordered workqueue may return a NULL pointer, which could cause a NULL pointer dereference. Recommendations: For versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider adding a check for the return value of alloc ordered workqueue to prevent NULL pointer dereferences.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** The issue is related to a null pointer dereference in the `drm client modeset probe()` function. Specifically, the return value of `drm mode duplicate()` is assigned to `modeset->mode`, which can lead to a null pointer dereference if `drm mode duplicate()` fails. A check has been added to avoid this issue. **Recommendations** To resolve the issue, update to Linux kernel version 6.6.50 or later. As a temporary workaround, consider disabling the `drm client modeset probe()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the `nouveau connector get modes()` function. This occurs when the return value of `drm mode duplicate()` is assigned to `mode` and fails, leading to a possible null pointer dereference. The vulnerability can be exploited to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** The issue is related to a null pointer dereference in the `psb intel lvds get modes()` function. Specifically, the return value of `drm mode duplicate()` is assigned to `mode`, which can lead to a null pointer dereference if `drm mode duplicate()` fails. To avoid this, a check has been added. **Recommendations** Update to Linux kernel version 6.6.50 or later to resolve the issue. As a temporary workaround, consider disabling the `psb intel lvds get modes()` function until a patch is available. Restrict access to the `drm/gma500` component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** The issue is related to a null pointer dereference in the `cdv intel lvds get modes()` function. Specifically, the return value of `drm mode duplicate()` is assigned to `mode`, which can lead to a null pointer dereference if `drm mode duplicate()` fails. To avoid this, a check has been added. The vulnerability is associated with the `drm/gma500` component of the Linux kernel and can potentially allow an attacker to cause a denial of service. **Recommendations** To resolve the issue, update the Linux kernel to version 6.6.50 or later. As a temporary workaround, consider restricting access to the `drm/gma500` component until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to the `ast udc getstatus()` function in the `aspeed udc` module of the Linux kernel's USB gadget driver. It involves incorrect index calculation, which could allow an attacker to impact the confidentiality, integrity, and availability of protected information. The problem arises from the lack of validation of the endpoint index, potentially allowing a host to manipulate the index to point past the endpoint array. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the `nv17 tv get hd modes()` function of the DRM driver in the Linux kernel. This occurs when the return value of `drm mode duplicate()` is assigned to `mode` and fails, leading to a possible null pointer dereference. The same issue applies to `drm cvt mode()`. A check has been added to avoid this null pointer dereference. The vulnerability may allow an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the `nv17 tv get ld modes()` function of the Linux kernel's DRM driver. This occurs when the return value of `drm mode duplicate()` is assigned to `mode` and fails, leading to a possible null pointer dereference. The vulnerability can be exploited to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A null pointer dereference issue has been resolved in the Linux kernel. The issue occurs in the `versatile panel get modes()` function, where the return value of `drm mode duplicate()` is assigned to `mode`. If `drm mode duplicate()` fails, it leads to a null pointer dereference. A check has been added to avoid this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the Linux kernel's drm/amdgpu/vkms component. Specifically, in the `amdgpu vkms conn get modes()` function, the return value of `drm cvt mode()` is assigned to `mode`, which can lead to a null pointer dereference if `drm cvt mode()` fails. To address this, a check has been added to avoid the null pointer dereference. The vulnerability can be exploited to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a possible null pointer dereference in the Linux kernel's drm/panel/panel-tpo-tpg110 component. Specifically, in the `tpg110 get modes()` function, the return value of `drm mode duplicate()` is assigned to `mode`, which can lead to a null pointer dereference if `drm mode duplicate()` fails. A check has been added to avoid this null pointer dereference. The vulnerability can be exploited to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.