CVE-2024-24856
MEDIUM5.3EPSS 0.02%發布日:2024/4/17修改日:2026/4/28
也稱為:DEBIAN-CVE-2024-24856
描述
The memory allocation function ACPI_ALLOCATE_ZEROED does not guarantee a successful allocation, but the subsequent code directly dereferences the pointer that receives it, which may lead to null pointer dereference. To fix this issue, a null pointer check should be added. If it is null, return exception code AE_NO_MEMORY.
受影響套件(1)
- Debian/acpica-unixfrom 0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.3 | CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:H |