CVE-2024-43850
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
17/08/2024
Last modified:
30/09/2024
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
soc: qcom: icc-bwmon: Fix refcount imbalance seen during bwmon_remove<br />
<br />
The following warning is seen during bwmon_remove due to refcount<br />
imbalance, fix this by releasing the OPPs after use.<br />
<br />
Logs:<br />
WARNING: at drivers/opp/core.c:1640 _opp_table_kref_release+0x150/0x158<br />
Hardware name: Qualcomm Technologies, Inc. X1E80100 CRD (DT)<br />
...<br />
Call trace:<br />
_opp_table_kref_release+0x150/0x158<br />
dev_pm_opp_remove_table+0x100/0x1b4<br />
devm_pm_opp_of_table_release+0x10/0x1c<br />
devm_action_release+0x14/0x20<br />
devres_release_all+0xa4/0x104<br />
device_unbind_cleanup+0x18/0x60<br />
device_release_driver_internal+0x1ec/0x228<br />
driver_detach+0x50/0x98<br />
bus_remove_driver+0x6c/0xbc<br />
driver_unregister+0x30/0x60<br />
platform_driver_unregister+0x14/0x20<br />
bwmon_driver_exit+0x18/0x524 [icc_bwmon]<br />
__arm64_sys_delete_module+0x184/0x264<br />
invoke_syscall+0x48/0x118<br />
el0_svc_common.constprop.0+0xc8/0xe8<br />
do_el0_svc+0x20/0x2c<br />
el0_svc+0x34/0xdc<br />
el0t_64_sync_handler+0x13c/0x158<br />
el0t_64_sync+0x190/0x194<br />
--[ end trace 0000000000000000 ]---
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.0 (including) | 6.6.44 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.10.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page