CVE-2024-27060

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> thunderbolt: Fix NULL pointer dereference in tb_port_update_credits()<br /> <br /> Olliver reported that his system crashes when plugging in Thunderbolt 1<br /> device:<br /> <br /> BUG: kernel NULL pointer dereference, address: 0000000000000020<br /> #PF: supervisor read access in kernel mode<br /> #PF: error_code(0x0000) - not-present page<br /> PGD 0 P4D 0<br /> Oops: 0000 [#1] PREEMPT SMP NOPTI<br /> RIP: 0010:tb_port_do_update_credits+0x1b/0x130 [thunderbolt]<br /> Call Trace:<br /> <br /> ? __die+0x23/0x70<br /> ? page_fault_oops+0x171/0x4e0<br /> ? exc_page_fault+0x7f/0x180<br /> ? asm_exc_page_fault+0x26/0x30<br /> ? tb_port_do_update_credits+0x1b/0x130<br /> ? tb_switch_update_link_attributes+0x83/0xd0<br /> tb_switch_add+0x7a2/0xfe0<br /> tb_scan_port+0x236/0x6f0<br /> tb_handle_hotplug+0x6db/0x900<br /> process_one_work+0x171/0x340<br /> worker_thread+0x27b/0x3a0<br /> ? __pfx_worker_thread+0x10/0x10<br /> kthread+0xe5/0x120<br /> ? __pfx_kthread+0x10/0x10<br /> ret_from_fork+0x31/0x50<br /> ? __pfx_kthread+0x10/0x10<br /> ret_from_fork_asm+0x1b/0x30<br /> <br /> <br /> This is due the fact that some Thunderbolt 1 devices only have one lane<br /> adapter. Fix this by checking for the lane 1 before we read its credits.