CVE-2024-43867

MEDIUM EPSS 11.9%
Published Aug 21, 20241y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Aug 21, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: prime: fix refcount underflow Calling nouveau_bo_ref() on a nouveau_bo without initializing it (and hence the backing ttm_bo) leads to a refcount underflow. Instead of calling nouveau_bo_ref() in the unwind path of drm_gem_object_init(), clean things up manually. (cherry picked from commit 1b93f3e89d03cfc576636e195466a0d728ad8de5)

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
11.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-191

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥3.9  –  <5.4.282
linuxlinux_kernel*≥5.5  –  <5.10.224
linuxlinux_kernel*≥5.11  –  <5.15.165
linuxlinux_kernel*≥5.16  –  <6.1.104
linuxlinux_kernel*≥6.2  –  <6.6.45
linuxlinux_kernel*≥6.7  –  <6.10.4
linuxlinux_kernel6.11any

References 9

  • git.kernel.org https://git.kernel.org/stable/c/16998763c62bb465ebc409d0373b9cdcef1a61a6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2a1b327d57a8ac080977633a18999f032d7e9e3f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3bcb8bba72ce89667fa863054956267c450c47ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/906372e753c5027a1dc88743843b6aa2ad1aaecf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a9bf3efc33f1fbf88787a277f7349459283c9b95
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ebebba4d357b6c67f96776a48ddbaf0060fa4c10
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f23cd66933fe76b84d8e282e5606b4d99068c320
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/16998763c62bb465ebc409d0373b9cdcef1a61a6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2a1b327d57a8ac080977633a18999f032d7e9e3f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3bcb8bba72ce89667fa863054956267c450c47ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/906372e753c5027a1dc88743843b6aa2ad1aaecf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a9bf3efc33f1fbf88787a277f7349459283c9b95
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ebebba4d357b6c67f96776a48ddbaf0060fa4c10
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f23cd66933fe76b84d8e282e5606b4d99068c320
    Patch