Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-27412
HistoryMay 17, 2024 - 12:15 p.m.

CVE-2024-27412

2024-05-1712:15:12
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
linux kernel
vulnerability
resolved
power supply
bq27xxx i2c
irq
backtrace
driver unbinding
fix

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.2%

JSON

In the Linux kernel, the following vulnerability has been resolved:

power: supply: bq27xxx-i2c: Do not free non existing IRQ

The bq27xxx i2c-client may not have an IRQ, in which case
client->irq will be 0. bq27xxx_battery_i2c_probe() already has
an if (client->irq) check wrapping the request_threaded_irq().

But bq27xxx_battery_i2c_remove() unconditionally calls
free_irq(client->irq) leading to:

[ 190.310742] ------------[ cut here ]------------
[ 190.310843] Trying to free already-free IRQ 0
[ 190.310861] WARNING: CPU: 2 PID: 1304 at kernel/irq/manage.c:1893 free_irq+0x1b8/0x310

Followed by a backtrace when unbinding the driver. Add
an if (client->irq) to bq27xxx_battery_i2c_remove() mirroring
probe() to fix this.

Related

ubuntucve 1
redhatcve 1
vulnrichment 1
debiancve 1
cve 1
cvelist 1
openvas 9
osv 10
nessus 14
ubuntu 2
ubuntucve
ubuntucve
CVE-2024-27412
2024-05-17 00:00:00
redhatcve
redhatcve
CVE-2024-27412
2024-05-17 22:38:36
vulnrichment
vulnrichment
CVE-2024-27412 power: supply: bq27xxx-i2c: Do not free non existing IRQ
2024-05-17 11:50:50
debiancve
debiancve
CVE-2024-27412
2024-05-17 12:15:12
cve
cve
CVE-2024-27412
2024-05-17 12:15:12
cvelist
cvelist
CVE-2024-27412 power: supply: bq27xxx-i2c: Do not free non existing IRQ
2024-05-17 11:50:50
openvas
openvas
Ubuntu: Security Advisory (USN-6831-1)
2024-06-13 00:00:00
Ubuntu: Security Advisory (USN-6820-1)
2024-06-10 00:00:00
Ubuntu: Security Advisory (USN-6820-2)
2024-06-12 00:00:00
osv
osv
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
2024-06-12 15:51:37
linux-gkeop, linux-gkeop-5.15, linux-kvm vulnerabilities
2024-06-10 17:13:01
linux-aws, linux-aws-5.15 vulnerabilities
2024-06-11 20:53:02
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6831-1)
2024-06-12 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6820-1)
2024-06-07 00:00:00
Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6821-4)
2024-06-14 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-06-10 00:00:00
Linux kernel (Azure) vulnerabilities
2024-06-14 00:00:00

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.2%

JSON
Related for NVD:CVE-2024-27412
ubuntucve1redhatcve1vulnrichment1debiancve1cve1cvelist1openvas9osv10nessus14ubuntu2