Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2024-46713
HistorySep 13, 2024 - 2:49 p.m.

CVE-2024-46713 perf/aux: Fix AUX buffer serialization

2024-09-1314:49:13
Linux
www.cve.org
3
linux kernel
vulnerability
fix
perf/aux buffer
serialization
cve-2024-46713

EPSS

0

Percentile

10.9%

JSON

In the Linux kernel, the following vulnerability has been resolved:

perf/aux: Fix AUX buffer serialization

Ole reported that event->mmap_mutex is strictly insufficient to
serialize the AUX buffer, add a per RB mutex to fully serialize it.

Note that in the lock order comment the perf_event::mmap_mutex order
was already wrong, that is, it nesting under mmap_lock is not new with
this patch.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/events/core.c",
      "kernel/events/internal.h",
      "kernel/events/ring_buffer.c"
    ],
    "versions": [
      {
        "version": "45bfb2e50471",
        "lessThan": "7882923f1cb8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "45bfb2e50471",
        "lessThan": "52d13d224fdf",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "45bfb2e50471",
        "lessThan": "9dc7ad2b6777",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "45bfb2e50471",
        "lessThan": "c4b69bee3f4e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "45bfb2e50471",
        "lessThan": "b9b6882e243b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "45bfb2e50471",
        "lessThan": "2ab9d830262c",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/events/core.c",
      "kernel/events/internal.h",
      "kernel/events/ring_buffer.c"
    ],
    "versions": [
      {
        "version": "4.1",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.1",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.226",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.167",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.110",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.51",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10.10",
        "lessThanOrEqual": "6.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.11",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

osv 1
debiancve 1
cve 1
nvd 1
osv
osv
CVE-2024-46713
2024-09-13 15:15:15
debiancve
debiancve
CVE-2024-46713
2024-09-13 15:15:15
cve
cve
CVE-2024-46713
2024-09-13 15:15:15
nvd
nvd
CVE-2024-46713
2024-09-13 15:15:15

EPSS

0

Percentile

10.9%

JSON
Related for CVELIST:CVE-2024-46713
osv1debiancve1cve1nvd1