CVE-2024-27051: cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value

Description

In the Linux kernel, the following vulnerability has been resolved:

cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value

cpufreq_cpu_get may return NULL. To avoid NULL-dereference check it
and return 0 in case of error.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Classification

CVE ID: CVE-2024-27051

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.06% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/9127599c075caff234359950117018a010dd01db
https://git.kernel.org/stable/c/d951cf510fb0df91d3abac0121a59ebbc63c0567
https://git.kernel.org/stable/c/e72160cb6e23b78b41999d6885a34ce8db536095
https://git.kernel.org/stable/c/b25b64a241d769e932a022e5c780cf135ef56035
https://git.kernel.org/stable/c/74b84d0d71180330efe67c82f973a87f828323e5
https://git.kernel.org/stable/c/e6e3e51ffba0784782b1a076d7441605697ea3c6
https://git.kernel.org/stable/c/f661017e6d326ee187db24194cabb013d81bc2a6

Timeline

2024-12-20 00:35:42 UTC
CVE

cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value