CVE-2024-24864 Race condition vulnerability in Linux kernel media/dvb-core in dvbdmx_write()

🗓️ 05 Feb 2024 07:36:04Reported by AnolisType

Race condition vulnerability in Linux kernel media/dvb-cor

Reporter	Title	Published	Views	Family All 20
BDU FSTEC	The vulnerability of the dvb_dmx_write() function in the drivers/media/dvb-core/dvb_demux.c file of the Linux operating system’s DVB driver allows a hacker to cause a service failure.	13 Feb 202400:00	–	bdu_fstec
Circl	CVE-2024-24864	5 Feb 202409:31	–	circl
CNNVD	Linux kernel code issue vulnerability	5 Feb 202400:00	–	cnnvd
CVE	CVE-2024-24864	5 Feb 202407:36	–	cve
Debian CVE	CVE-2024-24864	5 Feb 202407:36	–	debiancve
EUVD	EUVD-2024-22227	3 Oct 202520:07	–	euvd
NVD	CVE-2024-24864	5 Feb 202408:15	–	nvd
OSV	AZL-34886 CVE-2024-24864 affecting package kernel 6.6.126.1-1	5 Feb 202408:15	–	osv
OSV	DEBIAN-CVE-2024-24864	5 Feb 202408:15	–	osv
OSV	ECHO-8B55-03C5-BAD1	15 Sep 202501:11	–	osv

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "media",
      "dvd-core"
    ],
    "packageName": "kernel",
    "platforms": [
      "Linux",
      "x86",
      "ARM"
    ],
    "product": "Linux kernel",
    "programFiles": [
      "https://gitee.com/anolis/cloud-kernel/blob/devel-5.10/drivers/media/dvb-core/dvb_demux.c"
    ],
    "repo": "https://gitee.com/anolis/cloud-kernel.git",
    "vendor": "Linux",
    "versions": [
      {
        "lessThan": "v6.8-rc2",
        "status": "affected",
        "version": "v2.6.12-rc2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.openanolis.cn/show_bug.cgi

05 Feb 2024 07:36Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.15.3

EPSS0.00017

CWE-362