5.5
CVE-2024-43849
- EPSS 0.16%
- Veröffentlicht 17.08.2024 10:15:10
- Zuletzt bearbeitet 03.11.2025 22:18:10
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
soc: qcom: pdr: protect locator_addr with the main mutex
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pdr: protect locator_addr with the main mutex If the service locator server is restarted fast enough, the PDR can rewrite locator_addr fields concurrently. Protect them by placing modification of those fields under the main pdr->lock.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.7 < 6.1.103
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.44
Linux ≫ Linux Kernel Version >= 6.7 < 6.10.3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.059 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
|
CWE-667 Improper Locking
The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.
https://git.kernel.org/stable/c/107924c14e3ddd85119ca43c26a4ee1056fa9b84
https://git.kernel.org/stable/c/3e815626d73e05152a8142f6e44aecc4133e6e08
https://git.kernel.org/stable/c/475a77fb3f0e1d527f56c60b79f5879661df5b80
https://git.kernel.org/stable/c/8543269567e2fb3d976a8255c5e348aed14f98bc
https://git.kernel.org/stable/c/d0870c4847e77a49c2f91bb2a8e0fa3c1f8dea5c
https://git.kernel.org/stable/c/eab05737ee22216250fe20d27f5a596da5ea6eb7
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html