CVE-2024-43849

Summary

In the Linux kernel, the following vulnerability has been resolved:

soc: qcom: pdr: protect locator_addr with the main mutex

If the service locator server is restarted fast enough, the PDR can rewrite locator_addr fields concurrently. Protect them by placing modification of those fields under the main pdr->lock.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfbe639b44a82755d639df1c5d147c93f02ac5a0f < eab05737ee22216250fe20d27f5a596da5ea6eb7affected
LinuxLinuxfbe639b44a82755d639df1c5d147c93f02ac5a0f < d0870c4847e77a49c2f91bb2a8e0fa3c1f8dea5caffected
LinuxLinuxfbe639b44a82755d639df1c5d147c93f02ac5a0f < 475a77fb3f0e1d527f56c60b79f5879661df5b80affected
LinuxLinuxfbe639b44a82755d639df1c5d147c93f02ac5a0f < 3e815626d73e05152a8142f6e44aecc4133e6e08affected
LinuxLinuxfbe639b44a82755d639df1c5d147c93f02ac5a0f < 8543269567e2fb3d976a8255c5e348aed14f98bcaffected
LinuxLinuxfbe639b44a82755d639df1c5d147c93f02ac5a0f < 107924c14e3ddd85119ca43c26a4ee1056fa9b84affected
LinuxLinux5.7affected
LinuxLinux0 < 5.7unaffected
LinuxLinux5.10.224 <= 5.10.*unaffected
LinuxLinux5.15.165 <= 5.15.*unaffected
LinuxLinux6.1.103 <= 6.1.*unaffected
LinuxLinux6.6.44 <= 6.6.*unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References