CVE-2024-35943

Description

In the Linux kernel, the following vulnerability has been resolved: pmdomain: ti: Add a null pointer check to the omap_prm_domain_init devm_kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 7%

Techniques & Countermeasures

• CWE-476•NULL Pointer Dereference

  The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

• linux•linux

  ≥ 58cbff023bfaeb9c290b5dbcc0a4bb327c653e18, < e65f7eb117e1b44742212d65784236269085e736 | ≥ 58cbff023bfaeb9c290b5dbcc0a4bb327c653e18, < 984212fa6b4bc6d9ed58f5b0838e8d5af7679ce5 | ≥ 58cbff023bfaeb9c290b5dbcc0a4bb327c653e18, < bc08f5ab11b1881b85371f0bd9c9a3d27f65cca8 | ≥ 58cbff023bfaeb9c290b5dbcc0a4bb327c653e18, < ce666cecc09c0f92d5f86d89d8068ecfcf723a7e | ≥ 58cbff023bfaeb9c290b5dbcc0a4bb327c653e18, < 04f23510daa40f9010fadf309507564a34ad956f | ≥ 58cbff023bfaeb9c290b5dbcc0a4bb327c653e18, < 5d7f58ee08434a33340f75ac7ac5071eea9673b3 | 5.10

• linux•linux_kernel

  < 5.10.237 | ≥ 5.11, < 5.15.181 | ≥ 5.16, < 6.1.111 | ≥ 6.2, < 6.6.27 | ≥ 6.7, < 6.8.6

References (8)

• https://git.kernel.org/stable/c/e65f7eb117e1b44742212d65784236269085e736
• https://git.kernel.org/stable/c/984212fa6b4bc6d9ed58f5b0838e8d5af7679ce5
• https://git.kernel.org/stable/c/bc08f5ab11b1881b85371f0bd9c9a3d27f65cca8
• https://git.kernel.org/stable/c/ce666cecc09c0f92d5f86d89d8068ecfcf723a7e
• https://git.kernel.org/stable/c/04f23510daa40f9010fadf309507564a34ad956f
• https://git.kernel.org/stable/c/5d7f58ee08434a33340f75ac7ac5071eea9673b3
• https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
• https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html