We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-50070

pinctrl: stm32: check devm_kasprintf() returned value



AssignerLinux
Reserved2024-10-21
Published2024-10-29
Updated2024-11-05

Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: stm32: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned value is not checked. Fix this lack and check the returned value. Found by code review.

Product status

Default status
unaffected

32c170ff15b0 before 3b36bb1fca2b
affected

32c170ff15b0 before 1f266957ae12
affected

32c170ff15b0 before b0f0e3f0552a
affected

Default status
affected

6.6
affected

Any version before 6.6
unaffected

6.6.58
unaffected

6.11.5
unaffected

6.12-rc4
unaffected

References

https://git.kernel.org/stable/c/3b36bb1fca2b87f6292ca2a8593f297c5e9fab41

https://git.kernel.org/stable/c/1f266957ae1207b0717c2d69096bc70654ae9fcb

https://git.kernel.org/stable/c/b0f0e3f0552a566def55c844b0d44250c58e4df6

cve.org CVE-2024-50070

nvd.nist.gov CVE-2024-50070

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.