CVE-2024-58065 – This CVE-2024-58065 is a NULL pointer dereferen... (How to Fix)

Q: What is the severity of CVE-2024-58065?

CVE-2024-58065 has a CVSS score of 5.5 (MEDIUM). This CVE-2024-58065 is a NULL pointer dereference vulnerability in the Linux kernel's clock controller driver for PXA1908 processors. It allows local attackers to cause a kernel panic (denial of service) by triggering the bug. Systems using affected Linux kernel versions with PXA1908 hardware are vulnerable.

📋 TL;DR

This CVE-2024-58065 is a NULL pointer dereference vulnerability in the Linux kernel's clock controller driver for PXA1908 processors. It allows local attackers to cause a kernel panic (denial of service) by triggering the bug. Systems using affected Linux kernel versions with PXA1908 hardware are vulnerable.

💻 Affected Systems

Products:

Linux kernel

Versions: Specific affected versions not explicitly stated in CVE, but patches exist for stable branches. Likely affects versions containing the bug before fixes were backported.

Operating Systems: Linux distributions using affected kernel versions

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects systems with PXA1908 ARM processors (typically embedded/mobile devices). Requires the pxa1908-apbc clock driver to be compiled and loaded.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, potentially requiring physical access to restart the system.

🟠

Likely Case

Local denial of service through kernel panic, requiring system reboot to recover.

🟢

If Mitigated

Minimal impact if proper access controls prevent local users from exploiting the driver bug.

🌐 Internet-Facing: LOW - This requires local access to exploit, not remotely exploitable.

🏢 Internal Only: MEDIUM - Local users or processes could trigger the kernel panic, affecting system availability.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM - Requires understanding of kernel driver interfaces and local access.

Exploitation requires local access to trigger the NULL pointer dereference in the clock driver.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Patches available in stable kernel trees (commits 6628f7f88de5f65f01adef5a63c707cb49d0fddb and e5ca5d7b4d7c29246d957dc45d63610584ae3a54)

Vendor Advisory: https://git.kernel.org/stable/c/6628f7f88de5f65f01adef5a63c707cb49d0fddb

Restart Required: Yes

Instructions:

1. Update Linux kernel to version containing the fix. 2. For embedded systems: Rebuild kernel with patched source or obtain updated firmware from vendor. 3. Reboot system after update.

🔧 Temporary Workarounds

Disable PXA1908 APBC clock driver

linux

Remove or blacklist the vulnerable kernel module if not required for system operation.

echo 'blacklist pxa1908_apbc' >> /etc/modprobe.d/blacklist.conf
rmmod pxa1908_apbc

🧯 If You Can't Patch

Restrict local user access to prevent exploitation by untrusted users.
Implement kernel module signing and loading restrictions to prevent driver manipulation.

🔍 How to Verify

Check if Vulnerable:

Check if pxa1908_apbc module is loaded: lsmod | grep pxa1908_apbc. Check kernel version against patched releases.

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version is updated and module is either not loaded or from patched kernel. Check dmesg for NULL pointer errors.

📡 Detection & Monitoring

Log Indicators:

Kernel panic messages in dmesg/system logs
NULL pointer dereference errors mentioning pxa1908_apbc

Network Indicators:

None - local exploitation only

SIEM Query:

source="kernel" AND ("NULL pointer" OR "kernel panic") AND "pxa1908"

📊 Metadata

CVE ID: CVE-2024-58065

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-476

EPSS Score: 0.04% exploit probability (11th percentile)

Published: March 6, 2025

Last Updated: October 1, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-58065, you might also want to check these: