5.5
CVE-2024-38780
- EPSS 0.19%
- Veröffentlicht 21.06.2024 12:15:11
- Zuletzt bearbeitet 12.05.2026 12:16:56
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
In the Linux kernel, the following vulnerability has been resolved:
dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from
known context") by error replaced spin_unlock_irqrestore() with
spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite
sync_print_obj() is called from sync_debugfs_show(), lockdep complains
inconsistent lock state warning.
Use plain spin_{lock,unlock}() for sync_print_obj(), for
sync_debugfs_show() is already using spin_{lock,unlock}_irq().Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 4.14
Linux ≫ Linux Kernel Version >= 4.19 < 4.19.316
Linux ≫ Linux Kernel Version >= 5.4 < 5.4.278
Linux ≫ Linux Kernel Version >= 5.10 < 5.10.219
Linux ≫ Linux Kernel Version >= 5.15 < 5.15.161
Linux ≫ Linux Kernel Version >= 6.1 < 6.1.93
Linux ≫ Linux Kernel Version >= 6.6 < 6.6.33
Linux ≫ Linux Kernel Version >= 6.9 < 6.9.4
Linux ≫ Linux Kernel Version6.10.0 Updaterc1
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.084 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-667 Improper Locking
The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed
https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a
https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a
https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e
https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878
https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef
https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8
https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39
https://cert-portal.siemens.com/productcert/html/ssa-398330.html
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
https://cert-portal.siemens.com/productcert/html/ssa-613116.html