Lucene search
LinuxCVE-2024-43875HistoryAug 21, 2024 - 1:15 a.m.
CVE-2024-43875
2024-08-2101:15:11
Linux
web.nvd.nist.gov
8
linux kernel
pci endpoint
vulnerability
cve-2024-43875
fixed
error handling
vpci_scan_bus
In the Linux kernel, the following vulnerability has been resolved:
PCI: endpoint: Clean up error handling in vpci_scan_bus()
Smatch complains about inconsistent NULL checking in vpci_scan_bus():
drivers/pci/endpoint/functions/pci-epf-vntb.c:1024 vpci_scan_bus() error: we previously assumed 'vpci_bus' could be null (see line 1021)
Instead of printing an error message and then crashing we should return
an error code and clean up.
Also the NULL check is reversed so it prints an error for success
instead of failure.
Affected configurations
Node
linuxlinux_kernelRange6.0–5.15.165
ORlinuxlinux_kernelRange5.16.0–6.1.103
ORlinuxlinux_kernelRange6.2.0–6.6.44
ORlinuxlinux_kernelRange6.7.0–6.10.3
ORlinuxlinux_kernelRange6.11.0≥
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/pci/endpoint/functions/pci-epf-vntb.c"
],
"versions": [
{
"version": "e2b6ef72b7ae",
"lessThan": "24414c842a24",
"status": "affected",
"versionType": "git"
},
{
"version": "e35f56bb0330",
"lessThan": "7d368de78b60",
"status": "affected",
"versionType": "git"
},
{
"version": "e35f56bb0330",
"lessThan": "0e27e2e8697b",
"status": "affected",
"versionType": "git"
},
{
"version": "e35f56bb0330",
"lessThan": "b9e8695246bc",
"status": "affected",
"versionType": "git"
},
{
"version": "e35f56bb0330",
"lessThan": "8e0f5a96c534",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/pci/endpoint/functions/pci-epf-vntb.c"
],
"versions": [
{
"version": "6.0",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.0",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.165",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.103",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.44",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10.3",
"lessThanOrEqual": "6.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.11",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/0e27e2e8697b8ce96cdef43f135426525d9d1f8f
git.kernel.org/stable/c/24414c842a24d0fd498f9db6d2a762a8dddf1832
git.kernel.org/stable/c/7d368de78b60088ec9031c60c88976c0063ea4c0
git.kernel.org/stable/c/8e0f5a96c534f781e8c57ca30459448b3bfe5429
git.kernel.org/stable/c/b9e8695246bcfc028341470cbf92630cdc1ba36b
Related
osv
osv
CVE-2024-43875
2024-08-21 01:15:11
Security update for the Linux Kernel
2024-09-10 14:10:24
Security update for the Linux Kernel
2024-09-10 09:06:25
vulnrichment
vulnrichment
CVE-2024-43875 PCI: endpoint: Clean up error handling in vpci_scan_bus()
2024-08-21 00:06:27
nvd
nvd
CVE-2024-43875
2024-08-21 01:15:11
redhatcve
redhatcve
CVE-2024-43875
2024-08-21 19:40:19
debiancve
debiancve
CVE-2024-43875
2024-08-21 01:15:11
cvelist
cvelist
CVE-2024-43875 PCI: endpoint: Clean up error handling in vpci_scan_bus()
2024-08-21 00:06:27
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3195-1)
2024-09-11 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3194-1)
2024-09-11 00:00:00