CVE-2024-53204
phy: realtek: usb: fix NULL deref in rtk_usb3phy_probe
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
27 dic 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved:
phy: realtek: usb: fix NULL deref in rtk_usb3phy_probe
In rtk_usb3phy_probe() devm_kzalloc() may return NULL
but this returned value is not checked.
Productos afectados
Linux · LinuxReferencias
https://git.kernel.org/stable/c/258ea41c926b7b3a16d0d7aa210a1401c4a1601bhttps://git.kernel.org/stable/c/48d52d3168749e10c1c37cd4ceccd18625851741https://git.kernel.org/stable/c/776f13ad1f88485206f1dca5ef138553106950e5https://git.kernel.org/stable/c/bf373d2919d98f3d1fe1b19a0304f72fe74386d9https://git.kernel.org/stable/c/e27877990e54bfe4246dd850f7ec8646c999ce58