CVE-2024-26799

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix uninitialized pointer dmactl In the case where __lpass_get_dmactl_handle is called and the driver id dai_id is invalid the pointer dmactl is not being assigned a value, and dmactl contains a garbage value since it has not been initialized and so the null check may not work. Fix this to initialize dmactl to NULL. One could argue that modern compilers will set this to zero, but it is useful to keep this initialized as per the same way in functions __lpass_platform_codec_intf_init and lpass_cdc_dma_daiops_hw_params. Cleans up clang scan build warning: sound/soc/qcom/lpass-cdc-dma.c:275:7: warning: Branch condition evaluates to a garbage value [core.uninitialized.Branch]

CVSS v3 6.2 MEDIUM

6.2^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/1382d8b55129875b2e07c4d2a7ebc790183769ee	Patch
https://git.kernel.org/stable/c/99adc8b4d2f38bf0d06483ec845bc48f60c3f8cf	Patch
https://git.kernel.org/stable/c/d5a7726e6ea62d447b79ab5baeb537ea6bdb225b	Patch
https://git.kernel.org/stable/c/1382d8b55129875b2e07c4d2a7ebc790183769ee	Patch
https://git.kernel.org/stable/c/99adc8b4d2f38bf0d06483ec845bc48f60c3f8cf	Patch
https://git.kernel.org/stable/c/d5a7726e6ea62d447b79ab5baeb537ea6bdb225b	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.8:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.8:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.8:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.8:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.8:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.8:rc6::::::

History

04 Apr 2025, 14:28

Type	Values Removed	Values Added
First Time		Linux linux Kernel Linux
CWE		CWE-824
References	~~() https://git.kernel.org/stable/c/1382d8b55129875b2e07c4d2a7ebc790183769ee -~~	() https://git.kernel.org/stable/c/1382d8b55129875b2e07c4d2a7ebc790183769ee - Patch
References	~~() https://git.kernel.org/stable/c/99adc8b4d2f38bf0d06483ec845bc48f60c3f8cf -~~	() https://git.kernel.org/stable/c/99adc8b4d2f38bf0d06483ec845bc48f60c3f8cf - Patch
References	~~() https://git.kernel.org/stable/c/d5a7726e6ea62d447b79ab5baeb537ea6bdb225b -~~	() https://git.kernel.org/stable/c/d5a7726e6ea62d447b79ab5baeb537ea6bdb225b - Patch
CPE		cpe:2.3:o:linux:linux_kernel:6.8:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.8:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.8:rc5:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.8:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.8:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.8:rc3::::::

21 Nov 2024, 09:03

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/1382d8b55129875b2e07c4d2a7ebc790183769ee -~~	() https://git.kernel.org/stable/c/1382d8b55129875b2e07c4d2a7ebc790183769ee -
References	~~() https://git.kernel.org/stable/c/99adc8b4d2f38bf0d06483ec845bc48f60c3f8cf -~~	() https://git.kernel.org/stable/c/99adc8b4d2f38bf0d06483ec845bc48f60c3f8cf -
References	~~() https://git.kernel.org/stable/c/d5a7726e6ea62d447b79ab5baeb537ea6bdb225b -~~	() https://git.kernel.org/stable/c/d5a7726e6ea62d447b79ab5baeb537ea6bdb225b -

01 Nov 2024, 15:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.2
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ASoC: qcom: corrige el puntero no inicializado dmactl. En el caso de que se llame a __lpass_get_dmactl_handle y el ID del controlador dai_id no sea válido, al puntero dmactl no se le asigna un valor y dmactl contiene un valor basura. ya que no se ha inicializado y, por lo tanto, es posible que la verificación nula no funcione. Solucione esto para inicializar dmactl a NULL. Se podría argumentar que los compiladores modernos establecerán esto en cero, pero es útil mantenerlo inicializado de la misma manera en las funciones __lpass_platform_codec_intf_init y lpass_cdc_dma_daiops_hw_params. Limpia la advertencia de compilación de escaneo clang: sound/soc/qcom/lpass-cdc-dma.c:275:7: advertencia: la condición de rama se evalúa como un valor basura [core.uninitialized.Branch]

04 Apr 2024, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-04-04 09:15

Updated : 2025-04-04 14:28

NVD link : CVE-2024-26799

Mitre link : CVE-2024-26799

CVE.ORG link : CVE-2024-26799

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-824

Access of Uninitialized Pointer

6.2 /10