Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-44954HistorySep 04, 2024 - 7:15 p.m.
CVE-2024-44954
2024-09-0419:15:30
Debian Security Bug Tracker
security-tracker.debian.org
1
linux kernel
alsa
vulnerability
resolved
midibuf
spinlock
In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access to midibuf There can be concurrent accesses to line6 midibuf from both the URB completion callback and the rawmidi API access. This could be a cause of KMSAN warning triggered by syzkaller below (so put as reported-by here). This patch protects the midibuf call of the former code path with a spinlock for avoiding the possible races.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.106-1 | linux_6.1.106-1_all.deb |
| Debian | 11 | all | linux | <= 5.10.223-1 | linux_5.10.223-1_all.deb |
| Debian | 999 | all | linux | < 6.10.6-1 | linux_6.10.6-1_all.deb |
| Debian | 13 | all | linux | < 6.10.6-1 | linux_6.10.6-1_all.deb |
Related
cvelist
cvelist
CVE-2024-44954 ALSA: line6: Fix racy access to midibuf
2024-09-04 18:35:53
vulnrichment
vulnrichment
CVE-2024-44954 ALSA: line6: Fix racy access to midibuf
2024-09-04 18:35:53
ubuntucve
ubuntucve
CVE-2024-44954
2024-09-05 00:00:00
osv
osv
CVE-2024-44954
2024-09-04 19:15:30
redhatcve
redhatcve
CVE-2024-44954
2024-09-04 20:45:22
cve
cve
CVE-2024-44954
2024-09-04 19:15:30
nvd
nvd
CVE-2024-44954
2024-09-04 19:15:30