Linux Kernel Vulnerability: Ignoring WMI Event Data in HWMON

CVE-2024-46768

Currently unrated 🤨

Key Information

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2024

Summary

In the Linux kernel, the following vulnerability has been resolved: hwmon: (hp-wmi-sensors) Check if WMI event data exists The BIOS can choose to return no event data in response to a WMI event, so the ACPI object passed to the WMI notify handler can be NULL. Check for such a situation and ignore the event in such a case.

Affected Version(s)

Linux < 217539e994e5

Linux < 4b19c83ba108

Linux < 23902f98f8d4

Timeline

Vulnerability published.
Sep 18, 2024
Vulnerability Reserved.
Sep 11, 2024

Collectors

NVD DatabaseMitre Database