References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

powercap: dtpm_cpu: Fix NULL pointer dereference in get_pd_power_uw()

The get_pd_power_uw() function can crash with a NULL pointer dereference
when em_cpu_get() returns NULL. This occurs when a CPU becomes impossible
during runtime, causing get_cpu_device() to return NULL, which propagates
through em_cpu_get() and leads to a crash when em_span_cpus() dereferences
the NULL pointer.

Add a NULL check after em_cpu_get() and return 0 if unavailable,
matching the existing fallback behavior in __dtpm_cpu_setup().

[ rjw: Drop an excess empty code line ]

https://git.kernel.org/stable/c/27914f2b795e2b58e9506f281dcdd98fef09d3c2

https://git.kernel.org/stable/c/27e0318f0ea69fcfa32228847debc384ade14578

https://git.kernel.org/stable/c/2fd001a0075ac01dc64a28a8e21226b3d989a91d

https://git.kernel.org/stable/c/46dc57406887dd02565cb264224194a6776d882b

https://git.kernel.org/stable/c/8374ac7d69a57d737e701a851ffe980a0d27d3ad

https://git.kernel.org/stable/c/c6ec27091cf5ac05094c1fe3a6ce914cf711a37c