CVE-2024-35891

Published: May 19, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Fix potential null pointer dereference In lan8814_get_sig_rx() and lan8814_get_sig_tx() ptp_parse_header() may return NULL as ptp_header due to abnormal packet type or corrupted packet. Fix this bug by adding ptp_header check. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Vendor	Product	Versions
Linux	Linux	affected `ece19502834d84ece2e056db28257ca2aa6e4d48 - < 10608161696c2768f53426642f78a42bcaaa53e8` affected `ece19502834d84ece2e056db28257ca2aa6e4d48 - < 95c1016a2d92c4c28a9d1b6d09859c00b19c0ea4` affected `ece19502834d84ece2e056db28257ca2aa6e4d48 - < 49767b0df276f12e3e7184601e09ee7430e252dc` affected `ece19502834d84ece2e056db28257ca2aa6e4d48 - < 96c155943a703f0655c0c4cab540f67055960e91`
Linux	Linux	affected `5.18` unaffected `0 - < 5.18` unaffected `6.1.85 - <= 6.1.` unaffected `6.6.26 - <= 6.6.` unaffected `6.8.5 - <= 6.8.*` +1 more versions

References

https://git.kernel.org/stable/c/10608161696c2768f53426642f78a42bcaaa53e8

https://git.kernel.org/stable/c/95c1016a2d92c4c28a9d1b6d09859c00b19c0ea4

https://git.kernel.org/stable/c/49767b0df276f12e3e7184601e09ee7430e252dc

https://git.kernel.org/stable/c/96c155943a703f0655c0c4cab540f67055960e91

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-35891

Description

Affected Products

References