CVE-2024-49879

low-risk

Published 2024-10-21

In the Linux kernel, the following vulnerability has been resolved: drm: omapdrm: Add missing check for alloc_ordered_workqueue As it may return NULL pointer and cause NULL pointer dereference. Add check for the return value of alloc_ordered_workqueue.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (10)

Patch https://git.kernel.org/stable/c/0d71916694aceb207fefecf62dfa811ec1108bbd

Patch https://git.kernel.org/stable/c/2bda89735199683b03f55b807bd1e31a3857520b

Patch https://git.kernel.org/stable/c/334de68eda2b99892ba869c15cb59bc956fd9f42

Patch https://git.kernel.org/stable/c/b57b53e8ffcdfda87d954fc4187426a54fe75a3d

https://git.kernel.org/stable/c/c17a4f52fa3c3dac2dd6a3c38f2de7342d97d74c

Patch https://git.kernel.org/stable/c/e60b0d3b5aa2e8d934deca9e11215af84e632bc9

Patch https://git.kernel.org/stable/c/e794b7b9b92977365c693760a259f8eef940c536

Patch https://git.kernel.org/stable/c/f37a1d9e5e22d5489309c3cd2db476dcdcc6530c

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal