CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
9.0%
In the Linux kernel, the following vulnerability has been resolved: r8169:
fix LED-related deadlock on module removal Binding
devm_led_classdev_register() to the netdev is problematic because on module
removal we get a RTNL-related deadlock. Fix this by avoiding the
device-managed LED functions. Note: We can safely call
led_classdev_unregister() for a LED even if registering it failed, because
led_classdev_unregister() detects this and is a no-op in this case.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 24.04 | noarch | linux | < 6.8.0-38.38 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-aws | < 6.8.0-1011.12 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-azure | < 6.8.0-1010.10 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-gcp | < 6.8.0-1010.11 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-gke | < 6.8.0-1006.9 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-ibm | < 6.8.0-1008.8 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-intel | < 6.8.0-1007.14 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-lowlatency | < 6.8.0-38.38.1 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-nvidia | < 6.8.0-1009.9 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-oem-6.8 | < 6.8.0-1008.8 | UNKNOWN |
git.kernel.org/linus/19fa4f2a85d777a8052e869c1b892a2f7556569d (6.9-rc4)
git.kernel.org/stable/c/19fa4f2a85d777a8052e869c1b892a2f7556569d
git.kernel.org/stable/c/53d986f39acd8ea11c9e460732bfa5add66360d9
launchpad.net/bugs/cve/CVE-2024-27021
nvd.nist.gov/vuln/detail/CVE-2024-27021
security-tracker.debian.org/tracker/CVE-2024-27021
ubuntu.com/security/notices/USN-6893-1
ubuntu.com/security/notices/USN-6893-2
ubuntu.com/security/notices/USN-6893-3
ubuntu.com/security/notices/USN-6918-1
www.cve.org/CVERecord?id=CVE-2024-27021