CVE-2024-50103
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 5, 2024
Updated: Nov 8, 2024
CWE ID 476
Summary
CVE-2024-50103 is a newly identified vulnerability affecting the Linux kernel. The issue lies within the ASoC (Advanced Sound Architecture) subsystem, specifically in the qcom driver. The vulnerability stems from a potential NULL pointer dereference in the function asoc_qcom_lpass_cpu_platform_probe(). This issue could lead to unexpected behavior or system crashes as a result of accessing memory that has not been properly allocated. The vulnerability has been addressed by adding a NULL check for the pointer returned by devm_kzalloc() in the affected function.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share