9 matches found
Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27003)
The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27003 advisory. - In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walki...
kernel: clk: Get runtime PM before walking tree for clk_summary
In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree for clksummary The Linux kernel CVE team has assigned CVE-2024-27003 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050146-CVE-2024-27003-c862@gregkh/T...
CVE-2024-27003 affecting package hyperv-daemons for versions less than 6.6.35.1-1
CVE-2024-27003 affecting package hyperv-daemons for versions less than 6.6.35.1-1. An upgraded version of the package is available that resolves this issue...
USN-6893-1: Linux kernel vulnerabilities
It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. CVE-2024-24857, CVE-2024-24858, CVE-2024-24859 Several security issues we...
Fedora: Security Advisory (FEDORA-2024-bc0db39a14)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-5680-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-27003
In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree for clksummary Similar to the previous commit, we should make sure that all devices are runtime resumed before printing the clksummary through debugfs. Failure to do so would result in a...
CVE-2024-27003 clk: Get runtime PM before walking tree for clk_summary
In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree for clksummary Similar to the previous commit, we should make sure that all devices are runtime resumed before printing the clksummary through debugfs. Failure to do so would result in a...
CVE-2024-27003
CVE-2024-27003 affects the Linux kernel clock framework. The issue arises when printing clk_state via debugfs without proper runtime PM synchronization, risking deadlock if a thread resuming a device also resumes in another thread. The fix removes the now-superfluous clk_pm_runtime_get/put calls ...