Back to search
CVE-2024-46677
Published: Sep 13, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: gtp: fix a potential NULL pointer dereference When sockfd_lookup() fails, gtp_encap_enable_socket() returns a NULL pointer, but its callers only check for error pointers thus miss the NULL pointer case. Fix it by returning an error pointer with the error code carried from sockfd_lookup(). (I found this bug during code inspection.)
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1e3a3abd8b28cfda9d0d0167e50e0fe11bc372a9 - < 620fe9809752fae91b4190e897b81ed9976dfb39affected 1e3a3abd8b28cfda9d0d0167e50e0fe11bc372a9 - < bdd99e5f0ad5fa727b16f2101fe880aa2bff2f8eaffected 1e3a3abd8b28cfda9d0d0167e50e0fe11bc372a9 - < 8bbb9e4e0e66a39282e582d0440724055404b38caffected 1e3a3abd8b28cfda9d0d0167e50e0fe11bc372a9 - < 4643b91691e969b1b9ad54bf552d7a990cfa3b87affected 1e3a3abd8b28cfda9d0d0167e50e0fe11bc372a9 - < e8b9930b0eb045d19e883c65ff9676fc89320c70+3 more versions |
Linux | Linux | affected 4.12unaffected 0 - < 4.12unaffected 4.19.321 - <= 4.19.*unaffected 5.4.283 - <= 5.4.*unaffected 5.10.225 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now