CVE-2024-46832

MEDIUM EPSS 14.1%
Published Sep 27, 20241y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 27, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: MIPS: cevt-r4k: Don't call get_c0_compare_int if timer irq is installed This avoids warning: [ 0.118053] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:283 Caused by get_c0_compare_int on secondary CPU. We also skipped saving IRQ number to struct clock_event_device *cd as it's never used by clockevent core, as per comments it's only meant for "non CPU local devices".

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
14.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel* <5.10.226
linuxlinux_kernel*≥5.11  –  <5.15.167
linuxlinux_kernel*≥5.16  –  <6.1.110
linuxlinux_kernel*≥6.2  –  <6.6.51
linuxlinux_kernel*≥6.7  –  <6.10.10
linuxlinux_kernel6.11any
linuxlinux_kernel6.11any
linuxlinux_kernel6.11any
linuxlinux_kernel6.11any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/189d3ed3b25beee26ffe2abed278208bece13f52
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/32ee0520159f1e8c2d6597c19690df452c528f30
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/50f2b98dc83de7809a5c5bf0ccf9af2e75c37c13
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b1d2051373bfc65371ce4ac8911ed984d0178c98
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d3ff0f98a52f0aafe35aa314d1c442f4318be3db
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e6cd871627abbb459d0ff6521d6bb9cf9d9f7522
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/189d3ed3b25beee26ffe2abed278208bece13f52
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/32ee0520159f1e8c2d6597c19690df452c528f30
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/50f2b98dc83de7809a5c5bf0ccf9af2e75c37c13
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b1d2051373bfc65371ce4ac8911ed984d0178c98
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d3ff0f98a52f0aafe35aa314d1c442f4318be3db
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e6cd871627abbb459d0ff6521d6bb9cf9d9f7522
    Patch