Medium severity5.3NVD Advisory· Published Apr 17, 2024· Updated Apr 15, 2026

CVE-2024-24856

Description

The memory allocation function ACPI_ALLOCATE_ZEROED does not guarantee a successful allocation, but the subsequent code directly dereferences the pointer that receives it, which may lead to null pointer dereference.

To fix this issue, a null pointer check should be added. If it is null, return exception code AE_NO_MEMORY.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.openanolis.cn/show_bug.cginvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000