CVE-2024-35916

MEDIUM

Linux Kernel 6.1-6.1.84, 6.2-6.6.25, 6.7-6.8.4 - NULL Pointer Dereference in dma-buf sanitycheck

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: dma-buf: Fix NULL pointer dereference in sanitycheck() If due to a memory allocation failure mock_chain() returns NULL, it is passed to dma_fence_enable_sw_signaling() resulting in NULL pointer dereference there. Call dma_fence_enable_sw_signaling() only if mock_chain() succeeds. Found by Linux Verification Center (linuxtesting.org) with SVACE.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/0336995512cdab0c65e99e4cdd47c4606debe14e

Patch

https://git.kernel.org/stable/c/156c226cbbdcf5f3bce7b2408a33b59fab7fae2c

Patch

https://git.kernel.org/stable/c/eabf131cba1db12005a68378305f13b9090a7a6b

Patch

https://git.kernel.org/stable/c/2295bd846765c766701e666ed2e4b35396be25e6

Scores

CVSS v3 5.3

EPSS 0.0063

EPSS Percentile 45.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (15)

linux/Kernel 6.1.0 - 6.1.85linux

linux/Kernel 6.2.0 - 6.6.26linux

linux/Kernel 6.7.0 - 6.8.5linux

Linux/Linux < 6.1

Linux/Linux 6.1

Linux/Linux 6.1.85 - 6.1.*

Linux/Linux 6.6.26 - 6.6.*

Linux/Linux 6.8.5 - 6.8.*

Linux/Linux 6.9

Linux/Linux d62c43a953ce02d54521ec06217d0c2ed6d489af - 0336995512cdab0c65e99e4cdd47c4606debe14e

... and 5 more

Published May 19, 2024

Tracked Since Feb 18, 2026