NVD Vulnerability Detail

CVE-2024-50156

Summary	In the Linux kernel, the following vulnerability has been resolved: drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() If the allocation in msm_disp_state_dump_regs() failed then `block->state` can be NULL. The msm_disp_state_print_regs() function _does_ have code to try to handle it with: if (reg) dump_addr = reg; ...but since "dump_addr" is initialized to NULL the above is actually a noop. The code then goes on to dereference `dump_addr`. Make the function print "Registers not stored" when it sees a NULL to solve this. Since we're touching the code, fix msm_disp_state_print_regs() not to pointlessly take a double-pointer and properly mark the pointer as `const`. Patchwork: https://patchwork.freedesktop.org/patch/619657/
Publication Date	Nov. 7, 2024, 7:15 p.m.
Registration Date	Nov. 8, 2024, 5 a.m.
Last Update	Nov. 20, 2024, 10:58 p.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://git.kernel.org/stable/c/42cf045086feae77b212f0f66e742b91a5b566b7	Patch
2	https://git.kernel.org/stable/c/e8e9f2a12a6214080c8ea83220a596f6e1dedc6c	Patch
3	https://git.kernel.org/stable/c/f7ad916273483748582d97cfa31054ccb19224f3	Patch
4	https://git.kernel.org/stable/c/563aa81fd66a4e7e6e551a0e02bcc23957cafe2f	Patch
5	https://git.kernel.org/stable/c/293f53263266bc4340d777268ab4328a97f041fa	Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-476	NULL ポインタデリファレンス	https://cwe.mitre.org/data/definitions/476.html

JVN Vulnerability Information

Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性

Title	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性
Summary	Linux の Linux Kernel には、NULL ポインタデリファレンスに関する脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Oct. 14, 2024, midnight
Registration Date	Nov. 21, 2024, 11:16 a.m.
Last Update	Nov. 21, 2024, 11:16 a.m.

Affected System

Linux

Linux Kernel 5.14 以上 5.15.170 未満

Linux Kernel 5.16 以上 6.1.115 未満

Linux Kernel 6.12

Linux Kernel 6.2 以上 6.6.59 未満

Linux Kernel 6.7 以上 6.11.6 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-50156	https://www.cve.org/CVERecord?id=CVE-2024-50156
National Vulnerability Database (NVD)
2	CVE-2024-50156	https://nvd.nist.gov/vuln/detail/CVE-2024-50156

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-476	http://cwe.mitre.org/data/definitions/476.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (293f532)	https://git.kernel.org/stable/c/293f53263266bc4340d777268ab4328a97f041fa
2	drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (42cf045)	https://git.kernel.org/stable/c/42cf045086feae77b212f0f66e742b91a5b566b7
3	drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (563aa81)	https://git.kernel.org/stable/c/563aa81fd66a4e7e6e551a0e02bcc23957cafe2f
4	drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (e8e9f2a)	https://git.kernel.org/stable/c/e8e9f2a12a6214080c8ea83220a596f6e1dedc6c
5	drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (f7ad916)	https://git.kernel.org/stable/c/f7ad916273483748582d97cfa31054ccb19224f3
Linux Kernel
6	Linux Kernel Archives	https://www.kernel.org

Change Log

No	Changed Details	Date of change
1	[2024年11月21日] 掲載	Nov. 21, 2024, 11:16 a.m.