PT-2025-9961 · Linux+7 · Linux Kernel+7

Published

2024-12-26

·

Updated

2026-04-20

·

CVE-2024-58080

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability in the Linux kernel has been resolved. The issue occurs when a clk rcg2 has a parent but lacks a defined parent map, leading to a NULL pointer dereference when calling clk set rate. This results in a crash, as evidenced by the provided call trace, which includes functions such as qcom find src index, freq tbl determine rate, clk rcg2 determine rate, and clk core set rate nolock. The problem is fixed by adding the missing parent map for the affected clock and un-inlining the parent data to keep it matched with the parent map.
Recommendations For the Linux kernel, add the parent map property for the clock where it's missing and un-inline the parent data to keep the matching parent map and parent data together.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2025-12647
BDU:2025-12208
CVE-2024-58080
DLA-4102-1
OESA-2025-1320
OESA-2025-1321
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1
USN-7521-1
USN-7521-2
USN-7521-3
USN-7651-1
USN-7651-2
USN-7651-3
USN-7651-4
USN-7651-5
USN-7651-6
USN-7652-1
USN-7653-1
USN-7737-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu