vulnerability
Oracle Linux: CVE-2024-42277: ELSA-2024-12815: Unbreakable Enterprise kernel security update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | 2024-08-17 | 2024-11-21 | 2025-01-23 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
2024-08-17
Added
2024-11-21
Modified
2025-01-23
Description
In the Linux kernel, the following vulnerability has been resolved:
iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en
In sprd_iommu_cleanup() before calling function sprd_iommu_hw_en()
dom->sdev is equal to NULL, which leads to null dereference.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
A flaw was identified and fixed in the Linux kernel's Spreadtrum (sprd) IOMMU driver. This issue occurred in the `sprd_iommu_cleanup()` function, where a null pointer dereference happened when calling `sprd_iommu_hw_en()`, as `dom->sdev` was `NULL`. This problem could lead to kernel crashes or instability. The bug was discovered by the Linux Verification Center using SVACE.
iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en
In sprd_iommu_cleanup() before calling function sprd_iommu_hw_en()
dom->sdev is equal to NULL, which leads to null dereference.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
A flaw was identified and fixed in the Linux kernel's Spreadtrum (sprd) IOMMU driver. This issue occurred in the `sprd_iommu_cleanup()` function, where a null pointer dereference happened when calling `sprd_iommu_hw_en()`, as `dom->sdev` was `NULL`. This problem could lead to kernel crashes or instability. The bug was discovered by the Linux Verification Center using SVACE.
Solution
oracle-linux-upgrade-kernel-uek
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.