CVE-2024-35790
Published: May 17, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group The DisplayPort driver's sysfs nodes may be present to the userspace before typec_altmode_set_drvdata() completes in dp_altmode_probe. This means that a sysfs read can trigger a NULL pointer error by deferencing dp->hpd in hpd_show or dp->lock in pin_assignment_show, as dev_get_drvdata() returns NULL in those cases. Remove manual sysfs node creation in favor of adding attribute group as default for devices bound to the driver. The ATTRIBUTE_GROUPS() macro is not used here otherwise the path to the sysfs nodes is no longer compliant with the ABI.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 - < 6b989ea1c479533ab8dbfbeb1704c94b1d3320daaffected 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 - < 9794ffd9d0c39ee070fbd733f862bbe89b28ba33affected 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 - < f1c5ddaef506e3517dce338c08a60663b1521920affected 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 - < 4a22aeac24d0d5f26ba741408e8b5a4be6dc5dc0affected 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 - < 0ad011776c057ce881b7fd6d8c79ecd459c087e9+1 more versions |
Linux | Linux | affected 4.19unaffected 0 - < 4.19unaffected 5.10.238 - <= 5.10.*unaffected 5.15.184 - <= 5.15.*unaffected 6.1.140 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now