Description In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the tegra_xusb_find_port_node return value. Callers expect NULL in the error case, but an error pointer is used.
CVSS vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Exploitability: 1.8 | Impact: 3.6 Attack Vector: Local
Complexity: Low
Privileges: Low
User Interaction: None
Scope: Unchanged
Confidentiality: None
Integrity: None
Availability: High
Affected Packages11 packages Show 6 more packages
🔴 Vulnerability Details14 OSV linux-azure vulnerabilities ↗ 2024-04-09 ▶ OSV linux-intel-iotg, linux-intel-iotg-5.15 vulnerabilities ↗ 2024-03-28 ▶ OSV linux-oracle, linux-oracle-5.15 vulnerabilities ↗ 2024-03-25 ▶ OSV linux-azure, linux-azure-5.4 vulnerabilities ↗ 2024-03-25 ▶ OSV linux-aws-hwe, linux-azure, linux-azure-4.15, linux-oracle vulnerabilities ↗ 2024-03-25 ▶ Show 9 more
📋 Vendor Advisories15 Ubuntu Linux kernel (Azure) vulnerabilities ↗ 2024-04-09 ▶ Ubuntu Linux kernel (Intel IoTG) vulnerabilities ↗ 2024-03-28 ▶ Ubuntu Linux kernel vulnerabilities ↗ 2024-03-25 ▶ Ubuntu Linux kernel (Azure) vulnerabilities ↗ 2024-03-25 ▶ Ubuntu Linux kernel (Oracle) vulnerabilities ↗ 2024-03-25 ▶ Show 10 more