PT-2025-9949 · Linux+10 · Linux Kernel+10

Neil Armstrong

+1

·

Published

2024-12-23

·

Updated

2026-04-20

·

CVE-2024-58068

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A issue in the Linux kernel has been identified where a driver calling dev pm opp find bw ceil or dev pm opp find bw floor to retrieve bandwidth from the OPP table can cause a kernel crash if the bandwidth table was not created due to missing interconnect properties in the OPP consumer node. The crash occurs with a NULL pointer dereference error. The call trace includes functions such as read bw, opp table find key, and dev pm opp find bw ceil.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025:20518
ALT-PU-2025-12647
BDU:2025-12210
CVE-2024-58068
DLA-4102-1
INFSA-2025_20518
OESA-2025-1339
OESA-2025-1340
OPENSUSE-SU-2025_01614-1
OPENSUSE-SU-2025_01707-1
RHSA-2025:20518
RHSA-2025_20518
SUSE-SU-2025:01614-1
SUSE-SU-2025:01707-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01964-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:20343-1
SUSE-SU-2025:20344-1
SUSE-SU-2025:20354-1
SUSE-SU-2025:20355-1
SUSE-SU-2025_01614-1
SUSE-SU-2025_01707-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01964-1
SUSE-SU-2025_01967-1
USN-7521-1
USN-7521-2
USN-7521-3
USN-7651-1
USN-7651-2
USN-7651-3
USN-7651-4
USN-7651-5
USN-7651-6
USN-7652-1
USN-7653-1
USN-7737-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu