CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-53199: ASoC: imx-audmix: Add NULL check in imx_audmix_probe

Description

In the Linux kernel, the following vulnerability has been resolved:

ASoC: imx-audmix: Add NULL check in imx_audmix_probe

devm_kasprintf() can return a NULL pointer on failure,but this
returned value in imx_audmix_probe() is not checked.
Add NULL check in imx_audmix_probe(), to handle kernel NULL
pointer dereference error.

Classification

CVE ID: CVE-2024-53199

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.08% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/c040cbe2e13da6454ae4748e04e53d885e1c9603
https://git.kernel.org/stable/c/dc5aa71f39b44d8117b2417dafd0e2884a75dd37
https://git.kernel.org/stable/c/e038f43edaf0083f6aa7c9415d86cf28dfd152f9

Timeline

2024-12-28 00:30:48 UTC
CVE

ASoC: imx-audmix: Add NULL check in imx_audmix_probe
2025-03-06 09:45:24 UTC
Tenable Plugins

Linux Distros Unpatched Vulnerability : CVE-2024-53199