Description
In the Linux kernel, the following vulnerability has been resolved: pcmcia: Fix a NULL pointer dereference in __iodyn_find_io_region() In __iodyn_find_io_region(), pcmcia_make_resource() is assigned to res and used in pci_bus_alloc_resource(). There is a dereference of res in pci_bus_alloc_resource(), which could lead to a NULL pointer dereference on failure of pcmcia_make_resource(). Fix this bug by adding a check of res.
Product status
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before b990c8c6ff50649ad3352507398e443b1e3527b2
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before 5ff2826c998370bf7f9ae26fe802140d220e3510
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before 4bd570f494124608a0696da070f00236a96fb610
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before ce3b7766276894d2fbb07e2047a171f9deb965de
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before 2ee32c4c4f636e474cd8ab7c19a68cf36072ea93
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before fafa7450075f41d232bc785a4ebcbf16374f2076
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before d7286005e8fde0a430dc180a9f46c088c7d74483
49b1153adfe18a3cce7e70aa26c690f275917cd0 (git) before 44822df89e8f3386871d9cad563ece8e2fd8f0e7
2.6.35
Any version before 2.6.35
5.4.299 (semver)
5.10.243 (semver)
5.15.192 (semver)
6.1.151 (semver)
6.6.105 (semver)
6.12.46 (semver)
6.16.6 (semver)
6.17 (original_commit_for_fix)
References
lists.debian.org/debian-lts-announce/2025/10/msg00008.html
lists.debian.org/debian-lts-announce/2025/10/msg00007.html
git.kernel.org/...c/b990c8c6ff50649ad3352507398e443b1e3527b2
git.kernel.org/...c/5ff2826c998370bf7f9ae26fe802140d220e3510
git.kernel.org/...c/4bd570f494124608a0696da070f00236a96fb610
git.kernel.org/...c/ce3b7766276894d2fbb07e2047a171f9deb965de
git.kernel.org/...c/2ee32c4c4f636e474cd8ab7c19a68cf36072ea93
git.kernel.org/...c/fafa7450075f41d232bc785a4ebcbf16374f2076
git.kernel.org/...c/d7286005e8fde0a430dc180a9f46c088c7d74483
git.kernel.org/...c/44822df89e8f3386871d9cad563ece8e2fd8f0e7
