Linux · Linux Kernel · CVE-2024-40964
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to a possible null pointer dereference in the `cs35l41 hda unbind()` function. This function clears the `hda component` entry matching its index and then dereferences the `codec` pointer held in the first element of the `hda component` array. The problem arises when the device index is 0. To resolve this, the `codec` pointer stashed in the `cs35l41 hda` structure should be used instead, as it will still be valid.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.