Executive Summary

Informations
Name CVE-2024-38780 First vendor Publication 2024-06-21
Vendor Cve Last vendor Modification 2024-07-15

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Overall CVSS Score 5.5
Base Score 5.5 Environmental Score 5.5
impact SubScore 3.6 Temporal Score 5.5
Exploitabality Sub Score 1.8
 
Attack Vector Local Attack Complexity Low
Privileges Required Low User Interaction None
Scope Unchanged Confidentiality Impact None
Integrity Impact None Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

In the Linux kernel, the following vulnerability has been resolved:

dma-buf/sw-sync: don't enable IRQ from sync_print_obj()

Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from known context") by error replaced spin_unlock_irqrestore() with spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite sync_print_obj() is called from sync_debugfs_show(), lockdep complains inconsistent lock state warning.

Use plain spin_{lock,unlock}() for sync_print_obj(), for sync_debugfs_show() is already using spin_{lock,unlock}_irq().

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38780

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-667 Insufficient Locking

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 8
Os 3568

Sources (Detail)

https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed
https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a
https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a
https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e
https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878
https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef
https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8
https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
Date Informations
2024-07-15 13:27:32
  • Multiple Updates
2024-06-27 17:27:26
  • Multiple Updates
2024-06-25 00:27:31
  • Multiple Updates
2024-06-21 21:27:27
  • Multiple Updates
2024-06-21 17:27:25
  • First insertion