Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2024-35891

HistoryMay 19, 2024 - 9:15 a.m.

CVE-2024-35891

2024-05-1909:15:10

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

net

phy

micrel

null pointer vulnerability

fix

abnormal packet type

corrupted packet

svace

linux verification center

nvd

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

net: phy: micrel: Fix potential null pointer dereference

In lan8814_get_sig_rx() and lan8814_get_sig_tx() ptp_parse_header() may
return NULL as ptp_header due to abnormal packet type or corrupted packet.
Fix this bug by adding ptp_header check.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

git.kernel.org/stable/c/10608161696c2768f53426642f78a42bcaaa53e8

git.kernel.org/stable/c/49767b0df276f12e3e7184601e09ee7430e252dc

git.kernel.org/stable/c/95c1016a2d92c4c28a9d1b6d09859c00b19c0ea4

git.kernel.org/stable/c/96c155943a703f0655c0c4cab540f67055960e91