PT-2024-32182 · Linux+3 · Linux Kernel+3

Published

2024-09-02

·

Updated

2025-02-10

·

CVE-2024-46768

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.52
Description The issue arises when the BIOS returns no event data in response to a WMI event, resulting in a NULL ACPI object being passed to the WMI notify handler. To address this, a check has been implemented to ignore the event when no data is returned.
Recommendations For versions prior to 6.6.52, update to version 6.6.52 or later to resolve the issue.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476CWE-388

Related Identifiers

BDU:2025-01675
CVE-2024-46768
MGASA-2024-0316
MGASA-2024-0318
OESA-2024-2219
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7196-1

Affected Products

Linuxmint
Linux Kernel
Red Os
Ubuntu