CVE-2024-53069

medium

Description

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: fix a NULL-pointer dereference Some SCM calls can be invoked with __scm being NULL (the driver may not have been and will not be probed as there's no SCM entry in device-tree). Make sure we don't dereference a NULL pointer.

References

https://git.kernel.org/stable/c/ca61d6836e6f4442a77762e1074d2706a2a6e578

https://git.kernel.org/stable/c/3d36e2b1d803f0d1cc674115d295a8f20ddb9268

Details

Source: Mitre, NVD

Published: 2024-11-19

Updated: 2024-11-22

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H