5.5

CVE-2024-50176

remoteproc: k3-r5: Fix error handling when power-up failed

In the Linux kernel, the following vulnerability has been resolved:

remoteproc: k3-r5: Fix error handling when power-up failed

By simply bailing out, the driver was violating its rule and internal
assumptions that either both or no rproc should be initialized. E.g.,
this could cause the first core to be available but not the second one,
leading to crashes on its shutdown later on while trying to dereference
that second instance.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 6.1.95 < 6.1.113
LinuxLinux Kernel Version >= 6.6.35 < 6.6.55
LinuxLinux Kernel Version >= 6.9.6 < 6.10
LinuxLinux Kernel Version >= 6.10 < 6.10.14
LinuxLinux Kernel Version >= 6.11 < 6.11.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.22% 0.123
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-755 Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles an exceptional condition.

https://git.kernel.org/stable/c/7afb5e3aa989c479979faeb18768a67889a7a9c6
Patch
https://git.kernel.org/stable/c/87ab3af7447791d0c619610fd560bd804549e187
Patch
https://git.kernel.org/stable/c/9ab27eb5866ccbf57715cfdba4b03d57776092fb
Patch
https://git.kernel.org/stable/c/afd102bde99d90ef41e043c846ea34b04433eb7b
Patch
https://git.kernel.org/stable/c/fc71c23958931713b5e76f317b76be37189f2516
Patch
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html