Bug 2301513 (CVE-2024-42147)
| Summary: | CVE-2024-42147 kernel: crypto: hisilicon/debugfs - Fix debugfs uninit process issue | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | dfreiber, drow, jburrell, vkumar |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | kernel 6.1.98, kernel 6.6.39, kernel 6.9.9, kernel 6.10 | Doc Type: | If docs needed, set a value |
| Doc Text: |
A flaw was found in the Linux kernel. During the zip probe process, the debugfs failure does not stop the probe. When debugfs initialization fails, jumping to the error branch will also release regs in addition to rollback operations. As a result, it may be released repeatedly during the regs uninit process.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2302012 | ||
| Bug Blocks: | |||
|
Description
OSIDB Bzimport
2024-07-30 08:39:04 UTC
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024073032-CVE-2024-42147-805a@gregkh/T Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2302012] |