CVE-2024-27028 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mt65xx: Fix NULL pointer access in interrupt handler The TX buffer in spi_transfer can be a NULL pointer, so the interrupt handler may end up writing to the invalid memory and cause crashes. Add a check to trans->tx_buf before using it.

Reserved 2024-02-19 | Published 2024-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

1ce24864bff40e11500a699789412115fdf244bf before 2342b05ec5342a519e00524a507f7a6ea6791a38

affected

1ce24864bff40e11500a699789412115fdf244bf before 55f8ea6731aa64871ee6aef7dba53ee9f9f3b2f6

affected

1ce24864bff40e11500a699789412115fdf244bf before bcfcdf19698024565eff427706ebbd8df65abd11

affected

1ce24864bff40e11500a699789412115fdf244bf before c10fed329c1c104f375a75ed97ea3abef0786d62

affected

1ce24864bff40e11500a699789412115fdf244bf before 766ec94cc57492eab97cbbf1595bd516ab0cb0e4

affected

1ce24864bff40e11500a699789412115fdf244bf before 62b1f837b15cf3ec2835724bdf8577e47d14c753

affected

1ce24864bff40e11500a699789412115fdf244bf before bea82355df9e1c299625405b1947fc9b26b4c6d4

affected

1ce24864bff40e11500a699789412115fdf244bf before 1784053cf10a14c4ebd8a890bad5cfe1bee51713

affected

1ce24864bff40e11500a699789412115fdf244bf before a20ad45008a7c82f1184dc6dee280096009ece55

affected

Default status

affected

4.11

affected

Any version before 4.11

unaffected

4.19.311

unaffected

5.4.273

unaffected

5.10.214

unaffected

5.15.153

unaffected

6.1.83

unaffected

6.6.23

unaffected

6.7.11

unaffected

6.8.2

unaffected

6.9

unaffected

References

git.kernel.org/...c/2342b05ec5342a519e00524a507f7a6ea6791a38

git.kernel.org/...c/55f8ea6731aa64871ee6aef7dba53ee9f9f3b2f6

git.kernel.org/...c/bcfcdf19698024565eff427706ebbd8df65abd11

git.kernel.org/...c/c10fed329c1c104f375a75ed97ea3abef0786d62

git.kernel.org/...c/766ec94cc57492eab97cbbf1595bd516ab0cb0e4

git.kernel.org/...c/62b1f837b15cf3ec2835724bdf8577e47d14c753

git.kernel.org/...c/bea82355df9e1c299625405b1947fc9b26b4c6d4

git.kernel.org/...c/1784053cf10a14c4ebd8a890bad5cfe1bee51713

git.kernel.org/...c/a20ad45008a7c82f1184dc6dee280096009ece55

cve.org (CVE-2024-27028)

nvd.nist.gov (CVE-2024-27028)

Download JSON