Linux · Linux Kernel · CVE-2024-47756
**Name of the Vulnerable Software and Affected Versions**
Linux kernel versions prior to 6.6.58
**Description**
A critical vulnerability in the Linux kernel's PCI keystone component has been fixed. The issue involved the `ks pcie quirk()` function, where an if-statement expression accidentally used `&&` instead of `||`, potentially resulting in a NULL dereference. This fix corrects the if-statement expression to use the correct condition.
**Recommendations**
For versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue.
As a temporary workaround, consider restricting access to the PCI keystone component until a patch is available.