VDB

CISA-2024-58021

CISA-2024-58021 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published February 27, 2025

In the Linux kernel, the following vulnerability has been resolved: HID: winwing: Add NULL check in winwing_init_led() devm_kasprintf() can return a NULL pointer on failure,but this returned value in winwing_init_led() is not checked. Add NULL check in winwing_init_led(), to handle kernel NULL pointer dereference error.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinux266c990debad2f9589c7a412e897a8e312b09766, 266c990debad2f9589c7a412e897a8e312b09766, 266c990debad2f9589c7a412e897a8e312b09766
LinuxLinux6.10, 0, 6.12.16
linuxlinux_kernel6.10, 6.10, 6.10
LinuxLinux266c990debad2f9589c7a412e897a8e312b09766, 266c990debad2f9589c7a412e897a8e312b09766, 266c990debad2f9589c7a412e897a8e312b09766

Timeline

  • Feb 27, 2025 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›