CVE-2024-46761

Updated: 2024-09-28 04:59:46.730765

Description:

In the Linux kernel, the following vulnerability has been resolved: pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv The hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel crash when we try to hot-unplug/disable the PCIe switch/bridge from the PHB. The crash occurs because although the MSI data structure has been released during disable/hot-unplug path and it has been assigned with NULL, still during unregistration the code was again trying to explicitly disable the MSI which causes the NULL pointer dereference and kernel crash. The patch fixes the check during unregistration path to prevent invoking pci_disable_msi/msix() since its data structure is already freed.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
AlmaLinux 9.2 FIPS kernel 5.14.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CentOS 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CentOS 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CentOS 8.4 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CentOS 8.5 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CentOS Stream 8 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CloudLinux 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2024-09-30 10:45:18
CloudLinux 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2024-09-30 10:45:18
Oracle Linux 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2024-09-30 10:45:18
Total: 14