PT-2024-20618 · Acpi+2 · Acpi+2
Huai-Yuan Liu
·
Published
2023-04-06
·
Updated
2026-03-05
·
CVE-2024-24856
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
ACPI (affected versions not specified)
Description
The memory allocation function
ACPI ALLOCATE ZEROED does not guarantee a successful allocation, but the subsequent code directly dereferences the pointer that receives it, which may lead to null pointer dereference.Recommendations
To fix this issue, a null pointer check should be added. If it is null, return exception code
AE NO MEMORY.Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acpi
Astra Linux
Debian