VYPR
Medium severity5.5NVD Advisory· Published May 17, 2024· Updated Jun 17, 2026

CVE-2024-35790

CVE-2024-35790

Description

In the Linux kernel, the following vulnerability has been resolved:

usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group

The DisplayPort driver's sysfs nodes may be present to the userspace before typec_altmode_set_drvdata() completes in dp_altmode_probe. This means that a sysfs read can trigger a NULL pointer error by deferencing dp->hpd in hpd_show or dp->lock in pin_assignment_show, as dev_get_drvdata() returns NULL in those cases.

Remove manual sysfs node creation in favor of adding attribute group as default for devices bound to the driver. The ATTRIBUTE_GROUPS() macro is not used here otherwise the path to the sysfs nodes is no longer compliant with the ABI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

108

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.