Lucene search

Ubuntu.comUB:CVE-2024-24855

HistoryFeb 05, 2024 - 12:00 a.m.

CVE-2024-24855

2024-02-0500:00:00

ubuntu.com

cve-2024-24855

linux kernel

scsi

null pointer

dereference

kernel panic

denial of service

bugzilla

redhat

suse

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

8.3%

JSON

A race condition was found in the Linux kernel’s scsi device driver in
lpfc_unregister_fcf_rescan() function. This can result in a null pointer
dereference issue, possibly leading to a kernel panic or denial of service
issue.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-223.235) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu20.04noarchlinux< 5.4.0-174.193UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-101.111UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-197.248) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchlinux< 4.4.0-252.286) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1166.179) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1121.131UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1056.61UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1129.135) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1167.182) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-223.235) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-174.193	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-101.111	UNKNOWN
ubuntu	14.04	noarch	linux	< 3.13.0-197.248) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	16.04	noarch	linux	< 4.4.0-252.286) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1166.179) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1121.131	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1056.61	UNKNOWN
ubuntu	14.04	noarch	linux-aws	< 4.4.0-1129.135) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	16.04	noarch	linux-aws	< 4.4.0-1167.182) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN

Rows per page:

1-10 of 651

References

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

8.3%

JSON

Related for UB:CVE-2024-24855