Vulnerabilities > CVE-2024-42146 - Unspecified vulnerability in Linux Kernel

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

linux

NVD

Published: 2024-07-30

Updated: 2024-12-11

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Add outer runtime_pm protection to xe_live_ktest@xe_dma_buf Any kunit doing any memory access should get their own runtime_pm outer references since they don't use the standard driver API entries. In special this dma_buf from the same driver. Found by pre-merge CI on adding WARN calls for unprotected inner callers: <6> [318.639739] # xe_dma_buf_kunit: running xe_test_dmabuf_import_same_driver <4> [318.639957] ------------[ cut here ]------------ <4> [318.639967] xe 0000:4d:00.0: Missing outer runtime PM protection <4> [318.640049] WARNING: CPU: 117 PID: 3832 at drivers/gpu/drm/xe/xe_pm.c:533 xe_pm_runtime_get_noresume+0x48/0x60 [xe]

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 6.8 Linux Linux Kernel 6.8.1 Linux Linux Kernel 6.8.2 Linux Linux Kernel 6.8.3 Linux Linux Kernel 6.8.4 Linux Linux Kernel 6.8.5 Linux Linux Kernel 6.8.6 Linux Linux Kernel 6.8.7 Linux Linux Kernel 6.8.8 Linux Linux Kernel 6.8.9 Linux Linux Kernel 6.8.10 Linux Linux Kernel 6.8.11 Linux Linux Kernel 6.8.12 Linux Linux Kernel 6.9 Linux Linux Kernel 6.9.1 Linux Linux Kernel 6.9.2 Linux Linux Kernel 6.9.3 Linux Linux Kernel 6.9.4 Linux Linux Kernel 6.9.5 Linux Linux Kernel 6.9.6 Linux Linux Kernel 6.9.7 Linux Linux Kernel 6.9.8	33

Summary

Vulnerable Configurations

References