CVE-2024-45828

MEDIUM EPSS 16.4%
Published Jan 11, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jan 11, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request Bus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when the ring is being stopped. Depending on timing between ring stop request completion, interrupt handler removal and code execution this may lead to a NULL pointer dereference in hci_dma_irq_handler() if it gets to run after the io_data pointer is set to NULL in hci_dma_cleanup(). Prevent this my masking the ring interrupts before ring stop request.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
16.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥5.0  –  <5.15.174
linuxlinux_kernel*≥5.16  –  <6.1.120
linuxlinux_kernel*≥6.2  –  <6.6.66
linuxlinux_kernel*≥6.7  –  <6.12.5

References 6

  • git.kernel.org https://git.kernel.org/stable/c/19cc5767334bfe980f52421627d0826c0da86721
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ca2738174e4ee44edb2ab2d86ce74f015a0cc32
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9d745a56aea45e47f4755bc12e6429d6314dbb54
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6cddf68b3405b272b5a3cad9657be0b02b34bf4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6dc4b4fda2e147e557050eaae51ff15edeb680b
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/19cc5767334bfe980f52421627d0826c0da86721
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ca2738174e4ee44edb2ab2d86ce74f015a0cc32
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9d745a56aea45e47f4755bc12e6429d6314dbb54
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6cddf68b3405b272b5a3cad9657be0b02b34bf4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6dc4b4fda2e147e557050eaae51ff15edeb680b
    Patch