CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value
Description
In the Linux kernel, the following vulnerability has been resolved:
cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value
cpufreq_cpu_get may return NULL. To avoid NULL-dereference check it
and return in case of error.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Classification
CVE ID: CVE-2024-50009
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 5.03% (scored less or equal to compared to others)
EPSS Date: 2025-02-15 (when was this score calculated)
References
https://git.kernel.org/stable/c/5f250d44b8191d612355dd97b89b37bbc1b5d2cbhttps://git.kernel.org/stable/c/5493f9714e4cdaf0ee7cec15899a231400cb1a9f