Executive Summary

Informations
Name CVE-2024-27037 First vendor Publication 2024-05-01
Vendor Cve Last vendor Modification 2024-11-07

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

In the Linux kernel, the following vulnerability has been resolved:

clk: zynq: Prevent null pointer dereference caused by kmalloc failure

The kmalloc() in zynq_clk_setup() will return null if the physical memory has run out. As a result, if we use snprintf() to write data to the null address, the null pointer dereference bug will happen.

This patch uses a stack variable to replace the kmalloc().

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27037

Sources (Detail)

https://git.kernel.org/stable/c/01511ac7be8e45f80e637f6bf61af2d3d2dee9db
https://git.kernel.org/stable/c/0801c893fd48cdba66a3c8f44c3fe43cc67d3b85
https://git.kernel.org/stable/c/58a946ab43501f2eba058d24d96af0ad1122475b
https://git.kernel.org/stable/c/7938e9ce39d6779d2f85d822cc930f73420e54a6
https://git.kernel.org/stable/c/8c4889a9ea861d7be37463c10846eb75e1b49c9d
https://git.kernel.org/stable/c/ca976c6a592f789700200069ef9052493c0b73d8
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
Date Informations
2024-11-07 21:27:59
  • Multiple Updates
2024-07-03 09:27:38
  • Multiple Updates
2024-05-02 00:27:26
  • Multiple Updates
2024-05-01 17:27:27
  • First insertion