References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Change History

In the Linux kernel, the following vulnerability has been resolved:

extcon: Modify extcon device to be created after driver data is set

Currently, someone can invoke the sysfs such as state_show()
intermittently before dev_set_drvdata() is done.
And it can be a cause of kernel Oops because of edev is Null at that time.
So modified the driver registration to after setting drviver data.

- Oops's backtrace.

Backtrace:
[<c067865c>] (state_show) from [<c05222e8>] (dev_attr_show)
[<c05222c0>] (dev

https://git.kernel.org/stable/c/033ec4e7e59ae5e1ef1e8c10bc6552926044ed1c

https://git.kernel.org/stable/c/35ff1ac55d301efb3f467cf5426faaeb3452994b

https://git.kernel.org/stable/c/368e68ad6da4317fc4170e8d92b51c13d1bfe7a7

https://git.kernel.org/stable/c/5dcc2afe716d69f5112ce035cb14f007461ff189

https://git.kernel.org/stable/c/6e721f3ad0535b24f19a62420f4da95212cf069c

https://git.kernel.org/stable/c/abf3b222614f49f98e606fccdd269161c0d70204

https://git.kernel.org/stable/c/cb81ea998c461868d1168411a867d8ffee12f23f

https://git.kernel.org/stable/c/d472c78cc82999d07bd09193a6718016ce9cd386