CVE-2024-36014
📋 TL;DR
This CVE describes a null pointer dereference vulnerability in the ARM Mali Display Processor (MaliDP) driver of the Linux kernel. If exploited, it could cause a kernel panic leading to denial of service. Systems using affected ARM Mali GPU hardware with vulnerable kernel versions are at risk.
💻 Affected Systems
- Linux kernel with ARM Mali Display Processor (MaliDP) driver
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to system crash and denial of service, potentially requiring physical reboot.
Likely Case
System instability or crash when specific display operations are performed with ARM Mali GPU.
If Mitigated
Minor system instability that may be recoverable without full reboot.
🎯 Exploit Status
Requires local access to trigger the vulnerable code path. Likely requires specific display operations.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Kernel versions containing the fix commits (335cc45ef2b81b68be63c698b4f867a530bdf7a5 and related)
Vendor Advisory: https://git.kernel.org/stable/c/335cc45ef2b81b68be63c698b4f867a530bdf7a5
Restart Required: Yes
Instructions:
1. Update Linux kernel to version containing the fix commits. 2. Rebuild kernel if compiling from source. 3. Reboot system to load patched kernel.
🔧 Temporary Workarounds
Disable ARM Mali GPU if not needed
linuxRemove or blacklist the malidp kernel module to prevent loading of vulnerable driver
echo 'blacklist malidp' >> /etc/modprobe.d/blacklist.conf
rmmod malidp
🧯 If You Can't Patch
- Restrict local user access to systems with ARM Mali GPU hardware
- Monitor system logs for kernel panic events related to display operations
🔍 How to Verify
Check if Vulnerable:
Check kernel version and if malidp module is loaded: lsmod | grep malidpCheck Version:
uname -rVerify Fix Applied:
Verify kernel version includes fix commits and malidp module loads without issues📡 Detection & Monitoring
Log Indicators:
- Kernel panic messages
- NULL pointer dereference errors in dmesg
- Display subsystem crashes
Network Indicators:
- None - local vulnerability only
SIEM Query:
search 'kernel panic' OR 'NULL pointer dereference' AND 'malidp' in system logs🔗 References
- https://git.kernel.org/stable/c/335cc45ef2b81b68be63c698b4f867a530bdf7a5
- https://git.kernel.org/stable/c/3e54d4e95120641216dfe91a6c49f116a9f68490
- https://git.kernel.org/stable/c/565d9ad7e5a18eb69ed8b66a9e9bb3f45346520c
- https://git.kernel.org/stable/c/93f76ec1eddce60dbb5885cbc0d7df54adee4639
- https://git.kernel.org/stable/c/a1f95aede6285dba6dd036d907196f35ae3a11ea
- https://git.kernel.org/stable/c/a5fa5b40a278a3ca978fed64707bd27614adb1eb
- https://git.kernel.org/stable/c/b6cc5dd06336ed8bb3a7a1fc5aaf7d5e88bc0818
- https://git.kernel.org/stable/c/b77620730f614059db2470e8ebab3e725280fc6d
- https://git.kernel.org/stable/c/e4b52d49383306ef73fd1bd9102538beebb0fe07
- https://git.kernel.org/stable/c/335cc45ef2b81b68be63c698b4f867a530bdf7a5
- https://git.kernel.org/stable/c/3e54d4e95120641216dfe91a6c49f116a9f68490
- https://git.kernel.org/stable/c/565d9ad7e5a18eb69ed8b66a9e9bb3f45346520c
- https://git.kernel.org/stable/c/93f76ec1eddce60dbb5885cbc0d7df54adee4639
- https://git.kernel.org/stable/c/a1f95aede6285dba6dd036d907196f35ae3a11ea
- https://git.kernel.org/stable/c/a5fa5b40a278a3ca978fed64707bd27614adb1eb
- https://git.kernel.org/stable/c/b6cc5dd06336ed8bb3a7a1fc5aaf7d5e88bc0818
- https://git.kernel.org/stable/c/b77620730f614059db2470e8ebab3e725280fc6d
- https://git.kernel.org/stable/c/e4b52d49383306ef73fd1bd9102538beebb0fe07
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
