CVE-2024-26695

crypto: ccp - Fix null pointer dereference in __sev_platform_shutdown_locked

References

https://cve.org/CVERecord/?id=CVE-2024-26695

Notes

 carnil> Introduced in 1b05ece0c931 ("crypto: ccp - During shutdown, check SEV data
 carnil> pointer before using"). Vulnerable versions: 5.10.137 5.15.61 5.18.18 5.19.2
 carnil> 6.0-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
5.10-bullseye-security	released (5.10.216-1)
5.10-upstream-stable	released (5.10.210) [58054faf3bd29cd0b949b77efcb6157f66f401ed]
6.1-bookworm-security	released (6.1.82-1)
6.1-upstream-stable	released (6.1.79) [8731fe001a60581794ed9cf65da8cd304846a6fb]
6.6-upstream-stable	released (6.6.18) [88aa493f393d2ee38ac140e1f6ac1881346e85d4]
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (6.7.7-1)
upstream	released (6.8-rc4) [ccb88e9549e7cfd8bcd511c538f437e20026e983]