CVE-2024-38593

EPSS 0.01%
Published 19.06.2024 14:15:19
Last modified 21.11.2024 09:26:26
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

net: micrel: Fix receiving the timestamp in the frame for lan8841

The blamed commit started to use the ptp workqueue to get the second
part of the timestamp. And when the port was set down, then this
workqueue is stopped. But if the config option NETWORK_PHY_TIMESTAMPING
is not enabled, then the ptp_clock is not initialized so then it would
crash when it would try to access the delayed work.
So then basically by setting up and then down the port, it would crash.
The fix consists in checking if the ptp_clock is initialized and only
then cancel the delayed work.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 3ddf170e4a604f5d4d9459a36993f5e92b53e8b0

Version cc75549548482ed653c23f212544e58cb38ea980

Status affected

Version < 3fd4282d5f25c3c97fef3ef0b89b82ef4e2bc975

Version cc75549548482ed653c23f212544e58cb38ea980

Status affected

Version < 64a47cf634ae44e92be24ebc982410841093bd7b

Version cc75549548482ed653c23f212544e58cb38ea980

Status affected

Version < aea27a92a41dae14843f92c79e9e42d8f570105c

Version cc75549548482ed653c23f212544e58cb38ea980

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 6.5

Status affected

Version < 6.5

Version 0

Status unaffected

Version <= 6.6.*

Version 6.6.33

Status unaffected

Version <= 6.8.*

Version 6.8.12

Status unaffected

Version <= 6.9.*

Version 6.9.3

Status unaffected

Version <= *

Version 6.10

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.01%	0.006

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

https://git.kernel.org/stable/c/3ddf170e4a604f5d4d9459a36993f5e92b53e8b0

https://git.kernel.org/stable/c/3fd4282d5f25c3c97fef3ef0b89b82ef4e2bc975

https://git.kernel.org/stable/c/64a47cf634ae44e92be24ebc982410841093bd7b

https://git.kernel.org/stable/c/aea27a92a41dae14843f92c79e9e42d8f570105c

https://nvd.nist.gov/vuln/detail/CVE-2024-38593

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-38593

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-38593

EUVD