Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-a8n1-7q38-5fhh
Vulnerability ID VCID-a8n1-7q38-5fhh
Aliases CVE-2024-38622
Summary In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add callback function pointer check before its call In dpu_core_irq_callback_handler() callback function pointer is compared to NULL, but then callback function is unconditionally called by this pointer. Fix this bug by adding conditional return. Found by Linux Verification Center (linuxtesting.org) with SVACE. Patchwork: https://patchwork.freedesktop.org/patch/588237/
Status Published
Exploitability 0.5
Weighted Severity 4.0
Risk 2.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-476 NULL Pointer Dereference
System Score Found at
cvssv3 4.4 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-38622.json
epss 0.00033 https://api.first.org/data/v1/epss?cve=CVE-2024-38622
epss 0.00033 https://api.first.org/data/v1/epss?cve=CVE-2024-38622
epss 0.00033 https://api.first.org/data/v1/epss?cve=CVE-2024-38622
cvssv3.1 5.5 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
ssvc Track https://git.kernel.org/stable/c/530f272053a5e72243a9cb07bb1296af6c346002
ssvc Track https://git.kernel.org/stable/c/873f67699114452c2a996c4e10faac8ff860c241
ssvc Track https://git.kernel.org/stable/c/9078630ed7f8f25d65d11823e7f2b11a8e2f4f0f
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-38622.json
https://api.first.org/data/v1/epss?cve=CVE-2024-38622
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2293705 https://bugzilla.redhat.com/show_bug.cgi?id=2293705
530f272053a5e72243a9cb07bb1296af6c346002 https://git.kernel.org/stable/c/530f272053a5e72243a9cb07bb1296af6c346002
873f67699114452c2a996c4e10faac8ff860c241 https://git.kernel.org/stable/c/873f67699114452c2a996c4e10faac8ff860c241
9078630ed7f8f25d65d11823e7f2b11a8e2f4f0f https://git.kernel.org/stable/c/9078630ed7f8f25d65d11823e7f2b11a8e2f4f0f
USN-6999-1 https://usn.ubuntu.com/6999-1/
USN-6999-2 https://usn.ubuntu.com/6999-2/
USN-7004-1 https://usn.ubuntu.com/7004-1/
USN-7005-1 https://usn.ubuntu.com/7005-1/
USN-7005-2 https://usn.ubuntu.com/7005-2/
USN-7008-1 https://usn.ubuntu.com/7008-1/
USN-7029-1 https://usn.ubuntu.com/7029-1/
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-38622.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T13:23:40Z/ Found at https://git.kernel.org/stable/c/530f272053a5e72243a9cb07bb1296af6c346002
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T13:23:40Z/ Found at https://git.kernel.org/stable/c/873f67699114452c2a996c4e10faac8ff860c241
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T13:23:40Z/ Found at https://git.kernel.org/stable/c/9078630ed7f8f25d65d11823e7f2b11a8e2f4f0f
Exploit Prediction Scoring System (EPSS)
Percentile 0.10084
EPSS Score 0.00033
Published At June 5, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T16:50:56.236014+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0