Debian Security Bug TrackerDEBIANCVE:CVE-2024-27412CVE-2024-27412
In the Linux kernel, the following vulnerability has been resolved: power: supply: bq27xxx-i2c: Do not free non existing IRQ The bq27xxx i2c-client may not have an IRQ, in which case client->irq will be 0. bq27xxx_battery_i2c_probe() already has an if (client->irq) check wrapping the request_threaded_irq(). But bq27xxx_battery_i2c_remove() unconditionally calls free_irq(client->irq) leading to: [ 190.310742] ------------[ cut here ]------------ [ 190.310843] Trying to free already-free IRQ 0 [ 190.310861] WARNING: CPU: 2 PID: 1304 at kernel/irq/manage.c:1893 free_irq+0x1b8/0x310 Followed by a backtrace when unbinding the driver. Add an if (client->irq) to bq27xxx_battery_i2c_remove() mirroring probe() to fix this.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.82-1 | linux_6.1.82-1_all.deb |
| Debian | 11 | all | linux | < 5.10.216-1 | linux_5.10.216-1_all.deb |
| Debian | 10 | all | linux | < 4.19.316-1 | linux_4.19.316-1_all.deb |
| Debian | 999 | all | linux | < 6.7.9-1 | linux_6.7.9-1_all.deb |
| Debian | 13 | all | linux | < 6.7.9-1 | linux_6.7.9-1_all.deb |
| Debian | 10 | all | linux-5.10 | < 5.10.216-1~deb10u1 | linux-5.10_5.10.216-1~deb10u1_all.deb |
Related
6.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
13.2%