2313087 – (CVE-2024-46739) CVE-2024-46739 kernel: uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind

Bug 2313087 (CVE-2024-46739) - CVE-2024-46739 kernel: uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind

Summary: CVE-2024-46739 kernel: uio_hv_generic: Fix kernel NULL pointer dereference in...

Keywords:
Status:	NEW
Alias:	CVE-2024-46739
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2313176
Blocks:
TreeView+	depends on / blocked

Reported:	2024-09-18 08:21 UTC by OSIDB Bzimport
Modified:	2024-09-18 09:27 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-09-18 08:21:09 UTC

In the Linux kernel, the following vulnerability has been resolved:

uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind

For primary VM Bus channels, primary_channel pointer is always NULL. This
pointer is valid only for the secondary channels. Also, rescind callback
is meant for primary channels only.

Fix NULL pointer dereference by retrieving the device_obj from the parent
for the primary channel.

Comment 1 Michal Findra 2024-09-18 09:22:08 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024091834-CVE-2024-46739-0aa7@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.