CVE-2024-56689
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-56689
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56689.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-56689
- Downstream
- Related
- Published
- 2024-12-28T09:46:15Z
- Modified
- 2025-10-17T19:22:58.330506Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- PCI: endpoint: epf-mhi: Avoid NULL dereference if DT lacks 'mmio'
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
PCI: endpoint: epf-mhi: Avoid NULL dereference if DT lacks 'mmio'
If platformgetresource_byname() fails and returns NULL because DT lacks an 'mmio' property for the MHI endpoint, dereferencing res->start will cause a NULL pointer access. Add a check to prevent it.
[kwilczynski: error message update per the review feedback] [bhelgaas: commit log]
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/0e6d92e3b973de78eb7015154cf1197af9fac5c9
- https://git.kernel.org/stable/c/242ee2b0ad9b23f47084904fce3f9f228068a1f9
- https://git.kernel.org/stable/c/5089b3d874e9933d9842e90410d3af1520494757
- https://git.kernel.org/stable/c/c8b9d6b7d62a444e0bca5b9ae28f9f2b0f52feef
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1bf5f25324f7f6a52c3eb566ec5f78f6a901db96Fixed242ee2b0ad9b23f47084904fce3f9f228068a1f9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1bf5f25324f7f6a52c3eb566ec5f78f6a901db96Fixedc8b9d6b7d62a444e0bca5b9ae28f9f2b0f52feef
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1bf5f25324f7f6a52c3eb566ec5f78f6a901db96Fixed0e6d92e3b973de78eb7015154cf1197af9fac5c9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1bf5f25324f7f6a52c3eb566ec5f78f6a901db96Fixed5089b3d874e9933d9842e90410d3af1520494757
Affected versions
v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.10
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.11.6
v6.11.7
v6.11.8
v6.11.9
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.4
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"id": "CVE-2024-56689-1fcd8720",
"signature_type": "Line",
"digest": {
"line_hashes": [
"299198887138923488407206447190778831302",
"110640242628536114160746859707790948021",
"265709594839489118573590216921015536206",
"105982683329557431360703620394312430272",
"199782738412559860484755869858705409603",
"13162107021394831061621989204033341971",
"276662585344220263293259555737888736743",
"272580401321312276625436826528746374440"
],
"threshold": 0.9
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c8b9d6b7d62a444e0bca5b9ae28f9f2b0f52feef"
},
{
"id": "CVE-2024-56689-27f81361",
"signature_type": "Line",
"digest": {
"line_hashes": [
"299198887138923488407206447190778831302",
"110640242628536114160746859707790948021",
"265709594839489118573590216921015536206",
"105982683329557431360703620394312430272",
"199782738412559860484755869858705409603",
"13162107021394831061621989204033341971",
"276662585344220263293259555737888736743",
"272580401321312276625436826528746374440"
],
"threshold": 0.9
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5089b3d874e9933d9842e90410d3af1520494757"
},
{
"id": "CVE-2024-56689-4a46f28b",
"signature_type": "Line",
"digest": {
"line_hashes": [
"299198887138923488407206447190778831302",
"110640242628536114160746859707790948021",
"265709594839489118573590216921015536206",
"105982683329557431360703620394312430272",
"199782738412559860484755869858705409603",
"13162107021394831061621989204033341971",
"276662585344220263293259555737888736743",
"272580401321312276625436826528746374440"
],
"threshold": 0.9
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@242ee2b0ad9b23f47084904fce3f9f228068a1f9"
},
{
"id": "CVE-2024-56689-4f3b899f",
"signature_type": "Function",
"digest": {
"length": 536.0,
"function_hash": "180787737399564119593518048529820702374"
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c",
"function": "pci_epf_mhi_bind"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5089b3d874e9933d9842e90410d3af1520494757"
},
{
"id": "CVE-2024-56689-6b5a8785",
"signature_type": "Line",
"digest": {
"line_hashes": [
"299198887138923488407206447190778831302",
"110640242628536114160746859707790948021",
"265709594839489118573590216921015536206",
"105982683329557431360703620394312430272",
"199782738412559860484755869858705409603",
"13162107021394831061621989204033341971",
"276662585344220263293259555737888736743",
"272580401321312276625436826528746374440"
],
"threshold": 0.9
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e6d92e3b973de78eb7015154cf1197af9fac5c9"
},
{
"id": "CVE-2024-56689-85c42398",
"signature_type": "Function",
"digest": {
"length": 536.0,
"function_hash": "180787737399564119593518048529820702374"
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c",
"function": "pci_epf_mhi_bind"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c8b9d6b7d62a444e0bca5b9ae28f9f2b0f52feef"
},
{
"id": "CVE-2024-56689-ce3563ee",
"signature_type": "Function",
"digest": {
"length": 536.0,
"function_hash": "180787737399564119593518048529820702374"
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c",
"function": "pci_epf_mhi_bind"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e6d92e3b973de78eb7015154cf1197af9fac5c9"
},
{
"id": "CVE-2024-56689-e51420f5",
"signature_type": "Function",
"digest": {
"length": 536.0,
"function_hash": "180787737399564119593518048529820702374"
},
"target": {
"file": "drivers/pci/endpoint/functions/pci-epf-mhi.c",
"function": "pci_epf_mhi_bind"
},
"deprecated": false,
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@242ee2b0ad9b23f47084904fce3f9f228068a1f9"
}
]