CVE-2024-57985
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-57985
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-57985.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-57985
- Downstream
- Related
- Published
- 2025-02-27T02:07:09Z
- Modified
- 2025-10-22T08:12:06.825529Z
- Summary
- firmware: qcom: scm: Cleanup global '__scm' on probe failures
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
firmware: qcom: scm: Cleanup global '__scm' on probe failures
If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For example TZMEM parts ('scm->mempool') are initialized later in the probe, but users of it (scmsmccall()) rely on the 'scm' variable.
This fixes theoretical NULL pointer exception, triggered via introducing probe deferral in SCM driver with call trace:
qcomtzmemalloc+0x70/0x1ac (P) qcomtzmemalloc+0x64/0x1ac (L) qcomscmassignmem+0x78/0x194 qcomrmtfsmemprobe+0x2d4/0x38c platform_probe+0x68/0xc8
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced40289e35ca525f29a03989352ab207b6a9675475Fixed390d3baeba51a126f75c97b90ec28b9384ce4b84
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced40289e35ca525f29a03989352ab207b6a9675475Fixedfaf1715798fe72b79e4432ce8c6d03ca69765425
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced40289e35ca525f29a03989352ab207b6a9675475Fixed1e76b546e6fca7eb568161f408133904ca6bcf4f
Affected versions
v6.*
v6.10
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1