CVE-2024-35891

May 19, 2024, 9:15 a.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Fix potential null pointer dereference In lan8814_get_sig_rx() and lan8814_get_sig_tx() ptp_parse_header() may return NULL as ptp_header due to abnormal packet type or corrupted packet. Fix this bug by adding ptp_header check. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Product(s) Impacted

Product Versions
Linux kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/10608161696c2768f53426642f78a42bcaaa53e8
https://git.kernel.org/stable/c/49767b0df276f12e3e7184601e09ee7430e252dc
https://git.kernel.org/stable/c/95c1016a2d92c4c28a9d1b6d09859c00b19c0ea4
https://git.kernel.org/stable/c/96c155943a703f0655c0c4cab540f67055960e91

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-05-19
CVE-2024-35891

Timeline

Published: May 19, 2024, 9:15 a.m.
Last Modified: May 19, 2024, 9:15 a.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.