In the Linux kernel, the following vulnerability has been resolved:
dmaengine: dw-edma: HDMA: Add sync read before starting the DMA transfer in
remote setup The Linked list element and pointer are not stored in the same
memory as the HDMA controller register. If the doorbell register is toggled
before the full write of the linked list a race condition error will occur.
In remote setup we can only use a readl to the memory to assure the full
write has occurred.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 14.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
git.kernel.org/linus/712a92a48158e02155b4b6b21e03a817f78c9b7e (6.8-rc7)
git.kernel.org/stable/c/17be6f5cb223f22e4733ed8fe8b2247cbb677716
git.kernel.org/stable/c/227ef58a9b0c372efba422e8886a8015a1509eba
git.kernel.org/stable/c/712a92a48158e02155b4b6b21e03a817f78c9b7e
launchpad.net/bugs/cve/CVE-2024-27409
nvd.nist.gov/vuln/detail/CVE-2024-27409
security-tracker.debian.org/tracker/CVE-2024-27409
www.cve.org/CVERecord?id=CVE-2024-27409