CVE-2024-26784

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to a NULL dereference in the scmi perf domain remove() function when the #power-domain-cells property is missing in the Device Tree (DT) provided to the system. This causes the probe to bail out early without giving any error, leading to the ->remove() callback being executed without the expected initialized structures in place. The vulnerability can be exploited to cause a denial of service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.