PT-2024-32768 · Linux+7 · Linux Kernel+7
Dan Carpenter
·
Published
2024-07-22
·
Updated
2026-03-14
·
CVE-2024-47720
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.58
Description
A null pointer dereference error could occur in the Linux kernel due to a missing null check for the
set output gamma function pointer in the dcn30 set output transfer func function. This issue has been resolved by adding a nullity check for set output gamma before dereferencing it. If set output gamma is null, an error message is logged and the function is not called. The fix prevents a potential null pointer dereference error.Recommendations
To resolve this issue, update the Linux kernel to version 6.6.58 or later. As a temporary workaround, consider adding a nullity check for
set output gamma before calling it in the dcn30 set output transfer func function.Exploit
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu