CVE-2024-43851

MEDIUM EPSS 11.4%
Published Aug 17, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Aug 17, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: soc: xilinx: rename cpu_number1 to dummy_cpu_number The per cpu variable cpu_number1 is passed to xlnx_event_handler as argument "dev_id", but it is not used in this function. So drop the initialization of this variable and rename it to dummy_cpu_number. This patch is to fix the following call trace when the kernel option CONFIG_DEBUG_ATOMIC_SLEEP is enabled: BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 1, name: swapper/0 preempt_count: 1, expected: 0 CPU: 0 PID: 1 Comm: swapper/0 Not tainted 6.1.0 #53 Hardware name: Xilinx Versal vmk180 Eval board rev1.1 (QSPI) (DT) Call trace: dump_backtrace+0xd0/0xe0 show_stack+0x18/0x40 dump_stack_lvl+0x7c/0xa0 dump_stack+0x18/0x34 __might_resched+0x10c/0x140 __might_sleep+0x4c/0xa0 __kmem_cache_alloc_node+0xf4/0x168 kmalloc_trace+0x28/0x38 __request_percpu_irq+0x74/0x138 xlnx_event_manager_probe+0xf8/0x298 platform_probe+0x68/0xd8

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
11.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥6.1.77  –  <6.1.103
linuxlinux_kernel*≥6.6.16  –  <6.6.44
linuxlinux_kernel*≥6.7.4  –  <6.8
linuxlinux_kernel*≥6.8  –  <6.10.3

References 5

  • git.kernel.org https://git.kernel.org/stable/c/4a95449dd975e2ea6629a034f3e74b46c9634916
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a5e507fadab76393cbc12344ebd65a417a09aa46
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a96e60a6ea6818fd37b1853283a512c49af38cf5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f762acdaff9e54688be16e6c832c73a61533c1df
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/4a95449dd975e2ea6629a034f3e74b46c9634916
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a5e507fadab76393cbc12344ebd65a417a09aa46
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a96e60a6ea6818fd37b1853283a512c49af38cf5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f762acdaff9e54688be16e6c832c73a61533c1df
    Patch