In the Linux kernel, the following vulnerability has been resolved:
iio: light: veml6030: fix IIO device retrieval from embedded device
The dev pointer that is received as an argument in the inilluminanceperiodavailableshow function references the device embedded in the IIO device, not in the i2c client.
devtoiiodev() must be used to accessthe right data. The current implementation leads to a segmentation fault on every attempt to read the attribute because indiodev gets a NULL assignment.
This bug has been present since the first appearance of the driver, apparently since the last version (V6) before getting applied. A constant attribute was used until then, and the last modifications might have not been tested again.
[
    {
        "digest": {
            "function_hash": "69428458245472073491122771504239728997",
            "length": 609.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bcb90518ccd9e10bf6ab29e31994aab93e4a4361",
        "signature_version": "v1",
        "id": "CVE-2024-50198-2ab60bea",
        "signature_type": "Function",
        "target": {
            "function": "in_illuminance_period_available_show",
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "function_hash": "211422818686037946362010438223374401143",
            "length": 621.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bf3ab8e1c28f10df0823d4ff312f83c952b06a15",
        "signature_version": "v1",
        "id": "CVE-2024-50198-643294dd",
        "signature_type": "Function",
        "target": {
            "function": "in_illuminance_period_available_show",
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "function_hash": "69428458245472073491122771504239728997",
            "length": 609.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2cbb41abae65626736b8b52cf3b9339612c5a86a",
        "signature_version": "v1",
        "id": "CVE-2024-50198-77086483",
        "signature_type": "Function",
        "target": {
            "function": "in_illuminance_period_available_show",
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "line_hashes": [
                "274616765532079964781216551964807330753",
                "337868726923968429534417493525268076109",
                "250966216413651186499153114776299615428",
                "268288039298354955830226100041523047276",
                "309252696020740120340130616163149420751",
                "83573027563211104394996691925357049640",
                "286925067247506790292773746525249089708"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2cbb41abae65626736b8b52cf3b9339612c5a86a",
        "signature_version": "v1",
        "id": "CVE-2024-50198-b4ba9e1e",
        "signature_type": "Line",
        "target": {
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "function_hash": "69428458245472073491122771504239728997",
            "length": 609.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@50039aec43a82ad2495f2d0fb0c289c8717b4bb2",
        "signature_version": "v1",
        "id": "CVE-2024-50198-c0148969",
        "signature_type": "Function",
        "target": {
            "function": "in_illuminance_period_available_show",
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "line_hashes": [
                "274616765532079964781216551964807330753",
                "337868726923968429534417493525268076109",
                "250966216413651186499153114776299615428",
                "268288039298354955830226100041523047276",
                "309252696020740120340130616163149420751",
                "83573027563211104394996691925357049640",
                "286925067247506790292773746525249089708"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bcb90518ccd9e10bf6ab29e31994aab93e4a4361",
        "signature_version": "v1",
        "id": "CVE-2024-50198-c4045b63",
        "signature_type": "Line",
        "target": {
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "line_hashes": [
                "274616765532079964781216551964807330753",
                "337868726923968429534417493525268076109",
                "250966216413651186499153114776299615428",
                "268288039298354955830226100041523047276",
                "309252696020740120340130616163149420751",
                "83573027563211104394996691925357049640",
                "286925067247506790292773746525249089708"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bf3ab8e1c28f10df0823d4ff312f83c952b06a15",
        "signature_version": "v1",
        "id": "CVE-2024-50198-cb64ce68",
        "signature_type": "Line",
        "target": {
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "function_hash": "69428458245472073491122771504239728997",
            "length": 609.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c7c44e57750c31de43906d97813273fdffcf7d02",
        "signature_version": "v1",
        "id": "CVE-2024-50198-d0cf802f",
        "signature_type": "Function",
        "target": {
            "function": "in_illuminance_period_available_show",
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "function_hash": "69428458245472073491122771504239728997",
            "length": 609.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@905166531831beb067fffe2bdfc98031ffe89087",
        "signature_version": "v1",
        "id": "CVE-2024-50198-d992768f",
        "signature_type": "Function",
        "target": {
            "function": "in_illuminance_period_available_show",
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "line_hashes": [
                "274616765532079964781216551964807330753",
                "337868726923968429534417493525268076109",
                "250966216413651186499153114776299615428",
                "268288039298354955830226100041523047276",
                "309252696020740120340130616163149420751",
                "83573027563211104394996691925357049640",
                "286925067247506790292773746525249089708"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@905166531831beb067fffe2bdfc98031ffe89087",
        "signature_version": "v1",
        "id": "CVE-2024-50198-ddad0ac3",
        "signature_type": "Line",
        "target": {
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "line_hashes": [
                "274616765532079964781216551964807330753",
                "337868726923968429534417493525268076109",
                "250966216413651186499153114776299615428",
                "268288039298354955830226100041523047276",
                "309252696020740120340130616163149420751",
                "83573027563211104394996691925357049640",
                "286925067247506790292773746525249089708"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@50039aec43a82ad2495f2d0fb0c289c8717b4bb2",
        "signature_version": "v1",
        "id": "CVE-2024-50198-eb40cc9a",
        "signature_type": "Line",
        "target": {
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    },
    {
        "digest": {
            "line_hashes": [
                "274616765532079964781216551964807330753",
                "337868726923968429534417493525268076109",
                "250966216413651186499153114776299615428",
                "268288039298354955830226100041523047276",
                "309252696020740120340130616163149420751",
                "83573027563211104394996691925357049640",
                "286925067247506790292773746525249089708"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c7c44e57750c31de43906d97813273fdffcf7d02",
        "signature_version": "v1",
        "id": "CVE-2024-50198-f9c18a18",
        "signature_type": "Line",
        "target": {
            "file": "drivers/iio/light/veml6030.c"
        },
        "deprecated": false
    }
]