CVE-2024-35800

May 17, 2024, 6:35 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: efi: fix panic in kdump kernel Check if get_next_variable() is actually valid pointer before calling it. In kdump kernel this method is set to NULL that causes panic during the kexec-ed kernel boot. Tested with QEMU and OVMF firmware.

Product(s) Impacted

Product Versions
Linux kernel
  • []
Linux Kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/090d2b4515ade379cd592fbc8931344945978210
https://git.kernel.org/stable/c/62b71cd73d41ddac6b1760402bbe8c4932e23531
https://git.kernel.org/stable/c/7784135f134c13af17d9ffb39a57db8500bc60ff
https://git.kernel.org/stable/c/9114ba9987506bcfbb454f6e68558d68cb1abbde
https://git.kernel.org/stable/c/b9d103aca85f082a343b222493f3cab1219aaaf4

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-05-17
CVE-2024-35800

Timeline

Published: May 17, 2024, 2:15 p.m.
Last Modified: May 17, 2024, 6:35 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.