{"uuid": "6ae8953f-f8a6-4d89-b8b2-8b08457f59ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50292", "type": "seen", "source": "https://t.me/cvedetector/11419", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50292 - \"STM32 ASoC DMA Channel Release Null Pointer Dereference Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-50292 \nPublished : Nov. 19, 2024, 2:16 a.m. | 41\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove  \n  \nIn case of error when requesting ctrl_chan DMA channel, ctrl_chan is not  \nnull. So the release of the dma channel leads to the following issue:  \n[    4.879000] st,stm32-spdifrx 500d0000.audio-controller:  \ndma_request_slave_channel error -19  \n[    4.888975] Unable to handle kernel NULL pointer dereference  \nat virtual address 000000000000003d  \n[...]  \n[    5.096577] Call trace:  \n[    5.099099]  dma_release_channel+0x24/0x100  \n[    5.103235]  stm32_spdifrx_remove+0x24/0x60 [snd_soc_stm32_spdifrx]  \n[    5.109494]  stm32_spdifrx_probe+0x320/0x4c4 [snd_soc_stm32_spdifrx]  \n  \nTo avoid this issue, release channel only if the pointer is valid. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-19T04:15:58.000000Z"}