CVE-2024-56620
- Source
- https://cve.org/CVERecord?id=CVE-2024-56620
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56620.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-56620
- Downstream
- Related
- Published
- 2024-12-27T14:51:24.239Z
- Modified
- 2026-03-20T12:39:55.047102Z
- Summary
- scsi: ufs: qcom: Only free platform MSIs when ESI is enabled
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: ufs: qcom: Only free platform MSIs when ESI is enabled
Otherwise, it will result in a NULL pointer dereference as below:
Unable to handle kernel NULL pointer dereference at virtual address 0000000000000008 Call trace: mutexlock+0xc/0x54 platformdevicemsifreeirqsall+0x14/0x20 ufsqcomremove+0x34/0x48 [ufsqcom] platformremove+0x28/0x44 deviceremove+0x4c/0x80 devicereleasedriverinternal+0xd8/0x178 driverdetach+0x50/0x9c busremovedriver+0x6c/0xbc driverunregister+0x30/0x60 platformdriverunregister+0x14/0x20 ufsqcompltformexit+0x18/0xb94 [ufsqcom] __arm64sysdeletemodule+0x180/0x260 invokesyscall+0x44/0x100 el0svccommon.constprop.0+0xc0/0xe0 doel0svc+0x1c/0x28 el0svc+0x34/0xdc el0t64synchandler+0xc0/0xc4 el0t64sync+0x190/0x194
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56620.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/64506b3d23a337e98a74b18dcb10c8619365f2bd
- https://git.kernel.org/stable/c/f16a097047e38dcdd169a15e3eed1b2f2147a2e7
- https://git.kernel.org/stable/c/f99cb5f6344ef93777fd3add7979ebf291a852df
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56620.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-56620
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git