CVE-2024-58068
Published: Mar 6, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: OPP: fix dev_pm_opp_find_bw_*() when bandwidth table not initialized If a driver calls dev_pm_opp_find_bw_ceil/floor() the retrieve bandwidth from the OPP table but the bandwidth table was not created because the interconnect properties were missing in the OPP consumer node, the kernel will crash with: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000004 ... pc : _read_bw+0x8/0x10 lr : _opp_table_find_key+0x9c/0x174 ... Call trace: _read_bw+0x8/0x10 (P) _opp_table_find_key+0x9c/0x174 (L) _find_key+0x98/0x168 dev_pm_opp_find_bw_ceil+0x50/0x88 ... In order to fix the crash, create an assert function to check if the bandwidth table was created before trying to get a bandwidth with _read_bw().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected add1dc094a7456d3c56782b7478940b6a550c7ed - < 8532fd078d2a5286915d03bb0a0893ee1955acefaffected add1dc094a7456d3c56782b7478940b6a550c7ed - < 84ff05c9bd577157baed711a4f0b41206593978baffected add1dc094a7456d3c56782b7478940b6a550c7ed - < ff2def251849133be6076a7c2d427d8eb963c223affected add1dc094a7456d3c56782b7478940b6a550c7ed - < 5165486681dbd67b61b975c63125f2a5cb7f96d1affected add1dc094a7456d3c56782b7478940b6a550c7ed - < b44b9bc7cab2967c3d6a791b1cd542c89fc07f0e |
Linux | Linux | affected 6.0unaffected 0 - < 6.0unaffected 6.1.129 - <= 6.1.*unaffected 6.6.76 - <= 6.6.*unaffected 6.12.13 - <= 6.12.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now