CVE-2024-45828

Summary

In the Linux kernel, the following vulnerability has been resolved:

i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request

Bus cleanup path in DMA mode may trigger a RING_OP_STAT interrupt when the ring is being stopped. Depending on timing between ring stop request completion, interrupt handler removal and code execution this may lead to a NULL pointer dereference in hci_dma_irq_handler() if it gets to run after the io_data pointer is set to NULL in hci_dma_cleanup().

Prevent this my masking the ring interrupts before ring stop request.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3a379bbcea0af6280e1ca0d1edfcf4e68cde6ee0 < a6cddf68b3405b272b5a3cad9657be0b02b34bf4affected
LinuxLinux3a379bbcea0af6280e1ca0d1edfcf4e68cde6ee0 < 9d745a56aea45e47f4755bc12e6429d6314dbb54affected
LinuxLinux3a379bbcea0af6280e1ca0d1edfcf4e68cde6ee0 < a6dc4b4fda2e147e557050eaae51ff15edeb680baffected
LinuxLinux3a379bbcea0af6280e1ca0d1edfcf4e68cde6ee0 < 19cc5767334bfe980f52421627d0826c0da86721affected
LinuxLinux3a379bbcea0af6280e1ca0d1edfcf4e68cde6ee0 < 6ca2738174e4ee44edb2ab2d86ce74f015a0cc32affected
LinuxLinux5.0affected
LinuxLinux0 < 5.0unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.120 <= 6.1.*unaffected
LinuxLinux6.6.66 <= 6.6.*unaffected
LinuxLinux6.12.5 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References