Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL dereference in pcs_get_function() pinmux_generic_get_function() can return NULL and the pointer 'function' was dereferenced without checking against NULL. Add checking of pointer 'function' in pcs_get_function(). Found by code review.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.11, < 4.19.321 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/0a2bab5ed161318f57134716accba0a30f3af191Patch
- https://git.kernel.org/stable/c/1c38a62f15e595346a1106025722869e87ffe044Patch
- https://git.kernel.org/stable/c/292151af6add3e5ab11b2e9916cffa5f52859a1fPatch
- https://git.kernel.org/stable/c/2cea369a5c2e85ab14ae716da1d1cc6d25c85e11Patch
- https://git.kernel.org/stable/c/4e9436375fcc9bd2a60ee96aba6ed53f7a377d10Patch
- https://git.kernel.org/stable/c/4ed45fe99ec9e3c9478bd634624cd05a57d002f7Patch
- https://git.kernel.org/stable/c/6341c2856785dca7006820b127278058a180c075Patch
- https://git.kernel.org/stable/c/8f0bd526921b6867c2f10a83cd4fd14139adcd92Patch
- https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
FAQ
What is CVE-2024-46685?
CVE-2024-46685 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL dereference in pcs_get_function() pinmux_generic_get_function() can return NULL and the pointe...
How severe is CVE-2024-46685?
CVE-2024-46685 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-46685?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.