PT-2024-5784 · Linux+6 · Linux Kernel+6

Baruch Siach

·

Published

2024-04-27

·

Updated

2025-09-29

·

CVE-2024-35984

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the smbus component of the Linux kernel, where an error occurs when using the designware controller as a target only. This can lead to a denial of service. The problem arises because target-only modes break the assumption that one transfer function is always available. The fix involves always checking the pointer in the i2c transfer function.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-11524
ALT-PU-2024-13979
ALT-PU-2024-14046
ALT-PU-2024-7511
ALT-PU-2024-9131
AZL-42172
AZL-42213
BDU:2024-06499
CVE-2024-35984
DLA-3840-1
DLA-3842-1
MGASA-2024-0263
MGASA-2024-0266
OESA-2024-1693
OESA-2024-1705
OESA-2024-1707
SUSE-SU-2024:1979-1
SUSE-SU-2024:1983-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20249-1
USN-6896-1
USN-6896-2
USN-6896-3
USN-6896-4
USN-6896-5
USN-6898-1
USN-6898-2
USN-6898-3
USN-6898-4
USN-6917-1
USN-6919-1
USN-6921-1
USN-6921-2
USN-6926-1
USN-6926-2
USN-6926-3
USN-6927-1
USN-6938-1
USN-6952-1
USN-6952-2
USN-7019-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu