CVE-2024-27028

May 1, 2024, 7:50 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mt65xx: Fix NULL pointer access in interrupt handler The TX buffer in spi_transfer can be a NULL pointer, so the interrupt handler may end up writing to the invalid memory and cause crashes. Add a check to trans->tx_buf before using it.

Product(s) Impacted

Product Versions
Linux kernel

Weaknesses

References

https://git.kernel.org/stable/c/1784053cf10a14c4ebd8a890bad5cfe1bee51713
https://git.kernel.org/stable/c/2342b05ec5342a519e00524a507f7a6ea6791a38
https://git.kernel.org/stable/c/55f8ea6731aa64871ee6aef7dba53ee9f9f3b2f6
https://git.kernel.org/stable/c/62b1f837b15cf3ec2835724bdf8577e47d14c753
https://git.kernel.org/stable/c/766ec94cc57492eab97cbbf1595bd516ab0cb0e4
https://git.kernel.org/stable/c/a20ad45008a7c82f1184dc6dee280096009ece55
https://git.kernel.org/stable/c/bcfcdf19698024565eff427706ebbd8df65abd11
https://git.kernel.org/stable/c/bea82355df9e1c299625405b1947fc9b26b4c6d4
https://git.kernel.org/stable/c/c10fed329c1c104f375a75ed97ea3abef0786d62

Tags

2024-05-01
416baaa9-dc9f-4396-8d5f-8c081fb06d67
CVE-2024-27028

Date

  • Published: May 1, 2024, 1:15 p.m.
  • Last Modified: May 1, 2024, 7:50 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.