VDB

CISA-2024-26717

CISA-2024-26717 PUBLISHED

Reported by Linux · Published April 3, 2024

In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid-of: fix NULL-deref on failed power up A while back the I2C HID implementation was split in an ACPI and OF part, but the new OF driver never initialises the client pointer which is dereferenced on power-up failures.

Affected Products

VendorProductVersions
LinuxLinuxb33752c300232d7f95dd9a4353947d0c9e6a0e52, b33752c300232d7f95dd9a4353947d0c9e6a0e52, b33752c300232d7f95dd9a4353947d0c9e6a0e52
LinuxLinux5.12, 0, 5.15.149
LinuxLinux5.12, 5.12, 0
linuxlinux_kernel5.12, 5.12, 5.12

Timeline

  • Apr 3, 2024 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›