GHSA-434X-X6Q8-FRPR
Vulnerability from github – Published: 2024-05-17 15:31 – Updated: 2024-05-17 15:31
VLAI?
Details
In the Linux kernel, the following vulnerability has been resolved:
usb: cdc-wdm: close race between read and workqueue
wdm_read() cannot race with itself. However, in service_outstanding_interrupt() it can race with the workqueue, which can be triggered by error handling.
Hence we need to make sure that the WDM_RESPONDING flag is not just only set but tested.
{
"affected": [],
"aliases": [
"CVE-2024-35812"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-05-17T14:15:15Z",
"severity": null
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdc-wdm: close race between read and workqueue\n\nwdm_read() cannot race with itself. However, in\nservice_outstanding_interrupt() it can race with the\nworkqueue, which can be triggered by error handling.\n\nHence we need to make sure that the WDM_RESPONDING\nflag is not just only set but tested.",
"id": "GHSA-434x-x6q8-frpr",
"modified": "2024-05-17T15:31:10Z",
"published": "2024-05-17T15:31:10Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35812"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/e4e47e406d74cab601b2ab21ba5e3add811e05ae"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/da3b75931bb737be74d6b4341e0080f233ed1409"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/ab92e11b73b48b79f144421430891f3aa6242656"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/a86e54a345139f1a7668c9f83bdc7ac6f91b6f78"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/9b319f4a88094b2e020e6db6e819c808d890098d"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/9723602387217caa71d623ffcce314dc39e84a09"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/916cd2fcbc1e344bcabf4b2a834cdf5a0417d30c"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/8672ad663a22d0e4a325bb7d817b36ec412b967c"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/7182175f565ffffa2ba1911726c5656bfc7a1bae"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/5904411219601127ffdbd2d622bb5d67f9d8d16c"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/3afdcc4e1a00facad210f5c5891bb2fbc026067f"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/347cca11bb78b9f3c29b45a9c52e70258bd008bf"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/339f83612f3a569b194680768b22bf113c26a29d"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/2ff436b6399859e06539a2b9c667897d3cc85ad5"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/19f955ad9437a6859a529af34e2eafd903d5e7c1"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/164be0a824387301312689bb29b2be92ab2cd39d"
}
],
"schema_version": "1.4.0",
"severity": []
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…