CVE-2024-58052

MEDIUM

Linux Kernel - NULL Pointer Dereference in atomctrl_get_smc_sclk_range_table

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_table The function atomctrl_get_smc_sclk_range_table() does not check the return value of smu_atom_get_data_table(). If smu_atom_get_data_table() fails to retrieve SMU_Info table, it returns NULL which is later dereferenced. Found by Linux Verification Center (linuxtesting.org) with SVACE. In practice this should never happen as this code only gets called on polaris chips and the vbios data table will always be present on those chips.

References (10)

Core 10
Core References

Scores

CVSS v3 5.5
EPSS 0.0020
EPSS Percentile 10.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-476
Status published
Products (26)
linux/Kernel 4.7.0 - 5.4.291linux
linux/Kernel 5.11.0 - 5.15.179linux
linux/Kernel 5.16.0 - 6.1.129linux
linux/Kernel 5.5.0 - 5.10.235linux
linux/Kernel 6.13.0 - 6.13.2linux
linux/Kernel 6.2.0 - 6.6.76linux
linux/Kernel 6.7.0 - 6.12.13linux
Linux/Linux < 4.7
Linux/Linux 4.7
Linux/Linux 5.10.235 - 5.10.*
... and 16 more
Published Mar 06, 2025
Tracked Since Feb 18, 2026