-

CVE-2024-35822

EPSS 0.07%
Published 17.05.2024 14:15:17
Last modified 21.11.2024 09:20:58
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

usb: udc: remove warning when queue disabled ep

It is possible trigger below warning message from mass storage function,

WARNING: CPU: 6 PID: 3839 at drivers/usb/gadget/udc/core.c:294 usb_ep_queue+0x7c/0x104
pc : usb_ep_queue+0x7c/0x104
lr : fsg_main_thread+0x494/0x1b3c

Root cause is mass storage function try to queue request from main thread,
but other thread may already disable ep when function disable.

As there is no function failure in the driver, in order to avoid effort
to fix warning, change WARN_ON_ONCE() in usb_ep_queue() to pr_debug().

Affected products Warnungen 0 Metrics 1 CWE 0 References 14

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 2b002c308e184feeaeb72987bca3f1b11e5f70b8

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 68d951880d0c52c7f13dcefb5501b69b8605ce8c

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 3e944ddc17c042945d983e006df7860687a8849a

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < df5cbb908f1687e8ab97e222a16b7890d5501acf

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < f74c5e0b54b02706d9a862ac6cddade30ac86bcf

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 99731076722eb7ed26b0c87c879da7bb71d24290

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 36177c2595df12225b95ce74eb1ac77b43d5a58c

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 30511676eb54d480d014352bf784f02577a10252

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2a587a035214fa1b5ef598aea0b81848c5b72e5e

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version <= 4.19.*

Version 4.19.312

Status unaffected

Version <= 5.4.*

Version 5.4.274

Status unaffected

Version <= 5.10.*

Version 5.10.215

Status unaffected

Version <= 5.15.*

Version 5.15.154

Status unaffected

Version <= 6.1.*

Version 6.1.84

Status unaffected

Version <= 6.6.*

Version 6.6.24

Status unaffected

Version <= 6.7.*

Version 6.7.12

Status unaffected

Version <= 6.8.*

Version 6.8.3

Status unaffected

Version <= *

Version 6.9

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.21

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

https://git.kernel.org/stable/c/2a587a035214fa1b5ef598aea0b81848c5b72e5e

https://git.kernel.org/stable/c/2b002c308e184feeaeb72987bca3f1b11e5f70b8

https://git.kernel.org/stable/c/30511676eb54d480d014352bf784f02577a10252

https://git.kernel.org/stable/c/36177c2595df12225b95ce74eb1ac77b43d5a58c

https://git.kernel.org/stable/c/3e944ddc17c042945d983e006df7860687a8849a

https://git.kernel.org/stable/c/68d951880d0c52c7f13dcefb5501b69b8605ce8c

https://git.kernel.org/stable/c/99731076722eb7ed26b0c87c879da7bb71d24290

https://git.kernel.org/stable/c/df5cbb908f1687e8ab97e222a16b7890d5501acf

https://git.kernel.org/stable/c/f74c5e0b54b02706d9a862ac6cddade30ac86bcf

https://nvd.nist.gov/vuln/detail/CVE-2024-35822

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-35822

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-35822

EUVD