CVE-2024-27047
Published: May 1, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: phy: fix phy_get_internal_delay accessing an empty array The phy_get_internal_delay function could try to access to an empty array in the case that the driver is calling phy_get_internal_delay without defining delay_values and rx-internal-delay-ps or tx-internal-delay-ps is defined to 0 in the device-tree. This will lead to "unable to handle kernel NULL pointer dereference at virtual address 0". To avoid this kernel oops, the test should be delay >= 0. As there is already delay < 0 test just before, the test could only be size == 0.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 92252eec913b2dd5e7b5de11ea3efa2e64d65cf4 - < 06dd21045a7e8bc8701b0ebedcd9a30a6325878baffected 92252eec913b2dd5e7b5de11ea3efa2e64d65cf4 - < 0e939a002c8a7d66e60bd0ea6b281fb39d713c1aaffected 92252eec913b2dd5e7b5de11ea3efa2e64d65cf4 - < 2a2ff709511617de9c6c072eeee82bcbbdfecaf8affected 92252eec913b2dd5e7b5de11ea3efa2e64d65cf4 - < 589ec16174dd9378953b8232ae76fad0a96e1563affected 92252eec913b2dd5e7b5de11ea3efa2e64d65cf4 - < c0691de7df1d51482a52cac93b7fe82fd9dd296b+2 more versions |
Linux | Linux | affected 5.9unaffected 0 - < 5.9unaffected 5.10.214 - <= 5.10.*unaffected 5.15.153 - <= 5.15.*unaffected 6.1.83 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now