CVE-2024-58012

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A issue in the Linux kernel has been identified where the topology might not create the right number of DAI widgets for aggregated amps, leading to a NULL pointer deference. This occurs because each CPU DAI should associate with a widget, but the topology may not create the necessary DAI widgets. To prevent this, it is necessary to check that the DAI widget associated with the CPU DAI is valid.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025:20095

ALSA-2025:20518

ALT-PU-2025-12647

AZL-57899

AZL-57911

BDU:2026-01410

CVE-2024-58012

ECHO-F40F-CB2F-44BD

INFSA-2025_20518

OESA-2026-1303

OESA-2026-1304

OESA-2026-1305

OPENSUSE-SU-2025_1177-1

OPENSUSE-SU-2025_1178-1

OPENSUSE-SU-2025_1180-1

RHSA-2025:20095

RHSA-2025:20518

RHSA-2025_20518

SUSE-SU-2025:01919-1

SUSE-SU-2025:1177-1

SUSE-SU-2025:1178-1

SUSE-SU-2025:1180-1

SUSE-SU-2025:20190-1

SUSE-SU-2025:20192-1

SUSE-SU-2025:20260-1

SUSE-SU-2025:20270-1

SUSE-SU-2025_1177-1

SUSE-SU-2025_1178-1

SUSE-SU-2025_1180-1

USN-7521-1

USN-7521-2

USN-7521-3

Affected Products

Alt Linux

Almalinux

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Rocky Linux

Suse

Ubuntu

CVE-2024-58012

Weakness Enumeration

Related Identifiers

Affected Products

References · 1907