CVE-2024-42278

MEDIUM

Linux Kernel 6.6.33-6.6.43, 6.10-6.10.2, 6.11 - NULL Pointer Dereference in TAS2781 tasdev_load_calibrated_data

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: TAS2781: Fix tasdev_load_calibrated_data() This function has a reversed if statement so it's either a no-op or it leads to a NULL dereference.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/6d98741dbd1309a6f2d7cffbb10a8f036ec3ca06

Patch

https://git.kernel.org/stable/c/51be301d29d674ff328dfcf23705851f326f35b3

Patch

https://git.kernel.org/stable/c/92c78222168e9035a9bfb8841c2e56ce23e51f73

Scores

CVSS v3 5.5

EPSS 0.0022

EPSS Percentile 13.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (12)

Linux/Linux < 6.10

Linux/Linux 57847c2ec5fb5e951fe9028f9e587e3e878d9129 - 6d98741dbd1309a6f2d7cffbb10a8f036ec3ca06

Linux/Linux 6.10

Linux/Linux 6.10.3 - 6.10.*

Linux/Linux 6.11

Linux/Linux 6.6.33 - 6.6.44

Linux/Linux 6.6.44 - 6.6.*

Linux/Linux 6.9.4 - 6.10

Linux/Linux b195acf5266d2dee4067f89345c3e6b88d925311 - 51be301d29d674ff328dfcf23705851f326f35b3

Linux/Linux b195acf5266d2dee4067f89345c3e6b88d925311 - 92c78222168e9035a9bfb8841c2e56ce23e51f73

... and 2 more

Published Aug 17, 2024

Tracked Since Feb 18, 2026