CVE-2024-41037

MEDIUM

Linux Kernel 6.4-6.6.40, 6.7-6.9.9, 6.10 - NULL Pointer Dereference in HDA DMA Suspend Handler

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: fix null deref on system suspend entry When system enters suspend with an active stream, SOF core calls hw_params_upon_resume(). On Intel platforms with HDA DMA used to manage the link DMA, this leads to call chain of hda_dsp_set_hw_params_upon_resume() -> hda_dsp_dais_suspend() -> hda_dai_suspend() -> hda_ipc4_post_trigger() A bug is hit in hda_dai_suspend() as hda_link_dma_cleanup() is run first, which clears hext_stream->link_substream, and then hda_ipc4_post_trigger() is called with a NULL snd_pcm_substream pointer.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/8246bbf818ed7b8d5afc92b951e6d562b45c2450

Patch

https://git.kernel.org/stable/c/993af0f2d9f24e3c18a445ae22b34190d1fcad61

Patch

https://git.kernel.org/stable/c/9065693dcc13f287b9e4991f43aee70cf5538fdd

Scores

CVSS v3 5.5

EPSS 0.0027

EPSS Percentile 19.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (11)

linux/Kernel 6.4.0 - 6.6.41linux

linux/Kernel 6.7.0 - 6.9.10linux

Linux/Linux < 6.4

Linux/Linux 2b009fa0823c1510700fd17a0780ddd06a460fb4 - 8246bbf818ed7b8d5afc92b951e6d562b45c2450

Linux/Linux 2b009fa0823c1510700fd17a0780ddd06a460fb4 - 9065693dcc13f287b9e4991f43aee70cf5538fdd

Linux/Linux 2b009fa0823c1510700fd17a0780ddd06a460fb4 - 993af0f2d9f24e3c18a445ae22b34190d1fcad61

Linux/Linux 6.10

Linux/Linux 6.4

Linux/Linux 6.6.41 - 6.6.*

Linux/Linux 6.9.10 - 6.9.*

... and 1 more

Published Jul 29, 2024

Tracked Since Feb 18, 2026