CVE-2024-38780 - Vulnerability Details

Vendors	Products
Linux	Linux Kernel

Link	Providers
https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed
https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a
https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a
https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e
https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878
https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef
https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8
https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39
https://lore.kernel.org/linux-cve-announce/2024062119-CVE-2024-38780-d90f@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-38780
https://www.cve.org/CVERecord?id=CVE-2024-38780

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Show plain JSON

{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-38780", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-06-21T10:12:11.516Z", "datePublished": "2024-06-21T11:15:12.892Z", "dateUpdated": "2025-05-04T12:56:57.687Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T12:56:57.687Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-buf/sw-sync: don't enable IRQ from sync_print_obj()\n\nSince commit a6aa8fca4d79 (\"dma-buf/sw-sync: Reduce irqsave/irqrestore from\nknown context\") by error replaced spin_unlock_irqrestore() with\nspin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite\nsync_print_obj() is called from sync_debugfs_show(), lockdep complains\ninconsistent lock state warning.\n\nUse plain spin_{lock,unlock}() for sync_print_obj(), for\nsync_debugfs_show() is already using spin_{lock,unlock}_irq()."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/dma-buf/sync_debug.c"], "versions": [{"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "1ff116f68560a25656933d5a18e7619cb6773d8a", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "165b25e3ee9333f7b04f8db43895beacb51582ed", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "9d75fab2c14a25553a1664586ed122c316bd1878", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "242b30466879e6defa521573c27e12018276c33a", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "a4ee78244445ab73af22bfc5a5fc543963b25aef", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "8a283cdfc8beeb14024387a925247b563d614e1e", "status": "affected", "versionType": "git"}, {"version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "b794918961516f667b0c745aebdfebbb8a98df39", "status": "affected", "versionType": "git"}, {"version": "f14ad42b8743897d140808467ed4ae3ce93bd0a5", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/dma-buf/sync_debug.c"], "versions": [{"version": "4.14", "status": "affected"}, {"version": "0", "lessThan": "4.14", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.316", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.278", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.219", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.161", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.93", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.33", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.9.4", "lessThanOrEqual": "6.9.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.10", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "4.19.316"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "5.4.278"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "5.10.219"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "5.15.161"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "6.1.93"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "6.6.33"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "6.9.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.14", "versionEndExcluding": "6.10"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.9.68"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a"}, {"url": "https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed"}, {"url": "https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8"}, {"url": "https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878"}, {"url": "https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a"}, {"url": "https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef"}, {"url": "https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e"}, {"url": "https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39"}], "title": "dma-buf/sw-sync: don't enable IRQ from sync_print_obj()", "x_generator": {"engine": "bippy-1.2.0"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T04:19:20.307Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-38780", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T17:08:56.155586Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T17:34:44.243Z"}}]}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

cveMetadata : { »

cveId : CVE-2024-38780 (string)

assignerOrgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

state : PUBLISHED (string)

assignerShortName : Linux (string)

dateReserved : 2024-06-21T10:12:11.516Z (string)

datePublished : 2024-06-21T11:15:12.892Z (string)

dateUpdated : 2025-05-04T12:56:57.687Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

shortName : Linux (string)

dateUpdated : 2025-05-04T12:56:57.687Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from known context") by error replaced spin_unlock_irqrestore() with spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite sync_print_obj() is called from sync_debugfs_show(), lockdep complains inconsistent lock state warning. Use plain spin_{lock,unlock}() for sync_print_obj(), for sync_debugfs_show() is already using spin_{lock,unlock}_irq(). (string)

}

]

affected : [ »

0 : { »

product : Linux (string)

vendor : Linux (string)

defaultStatus : unaffected (string)

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

programFiles : [ »

0 : drivers/dma-buf/sync_debug.c (string)

]

versions : [ »

0 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 1ff116f68560a25656933d5a18e7619cb6773d8a (string)

status : affected (string)

versionType : git (string)

}

1 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 165b25e3ee9333f7b04f8db43895beacb51582ed (string)

status : affected (string)

versionType : git (string)

}

2 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

status : affected (string)

versionType : git (string)

}

3 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 9d75fab2c14a25553a1664586ed122c316bd1878 (string)

status : affected (string)

versionType : git (string)

}

4 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 242b30466879e6defa521573c27e12018276c33a (string)

status : affected (string)

versionType : git (string)

}

5 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

status : affected (string)

versionType : git (string)

}

6 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 8a283cdfc8beeb14024387a925247b563d614e1e (string)

status : affected (string)

versionType : git (string)

}

7 : { »

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : b794918961516f667b0c745aebdfebbb8a98df39 (string)

status : affected (string)

versionType : git (string)

}

8 : { »

version : f14ad42b8743897d140808467ed4ae3ce93bd0a5 (string)

status : affected (string)

versionType : git (string)

}

]

}

1 : { »

product : Linux (string)

vendor : Linux (string)

defaultStatus : affected (string)

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

programFiles : [ »

0 : drivers/dma-buf/sync_debug.c (string)

]

versions : [ »

0 : { »

version : 4.14 (string)

status : affected (string)

}

1 : { »

version : 0 (string)

lessThan : 4.14 (string)

status : unaffected (string)

versionType : semver (string)

}

2 : { »

version : 4.19.316 (string)

lessThanOrEqual : 4.19.* (string)

status : unaffected (string)

versionType : semver (string)

}

3 : { »

version : 5.4.278 (string)

lessThanOrEqual : 5.4.* (string)

status : unaffected (string)

versionType : semver (string)

}

4 : { »

version : 5.10.219 (string)

lessThanOrEqual : 5.10.* (string)

status : unaffected (string)

versionType : semver (string)

}

5 : { »

version : 5.15.161 (string)

lessThanOrEqual : 5.15.* (string)

status : unaffected (string)

versionType : semver (string)

}

6 : { »

version : 6.1.93 (string)

lessThanOrEqual : 6.1.* (string)

status : unaffected (string)

versionType : semver (string)

}

7 : { »

version : 6.6.33 (string)

lessThanOrEqual : 6.6.* (string)

status : unaffected (string)

versionType : semver (string)

}

8 : { »

version : 6.9.4 (string)

lessThanOrEqual : 6.9.* (string)

status : unaffected (string)

versionType : semver (string)

}

9 : { »

version : 6.10 (string)

lessThanOrEqual : * (string)

status : unaffected (string)

versionType : original_commit_for_fix (string)

}

]

}

]

cpeApplicability : [ »

0 : { »

nodes : [ »

0 : { »

operator : OR (string)

negate : false (boolean)

cpeMatch : [ »

0 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 4.19.316 (string)

}

1 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 5.4.278 (string)

}

2 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 5.10.219 (string)

}

3 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 5.15.161 (string)

}

4 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 6.1.93 (string)

}

5 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 6.6.33 (string)

}

6 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 6.9.4 (string)

}

7 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.14 (string)

versionEndExcluding : 6.10 (string)

}

8 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 4.9.68 (string)

}

]

}

]

}

]

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a (string)

}

1 : { »

url : https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed (string)

}

2 : { »

url : https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

}

3 : { »

url : https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878 (string)

}

4 : { »

url : https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a (string)

}

5 : { »

url : https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

}

6 : { »

url : https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e (string)

}

7 : { »

url : https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39 (string)

}

]

title : dma-buf/sw-sync: don't enable IRQ from sync_print_obj() (string)

x_generator : { »

engine : bippy-1.2.0 (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T04:19:20.307Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878 (string)

tags : [ »

0 : x_transferred (string)

]

}

4 : { »

url : https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a (string)

tags : [ »

0 : x_transferred (string)

]

}

5 : { »

url : https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

tags : [ »

0 : x_transferred (string)

]

}

6 : { »

url : https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e (string)

tags : [ »

0 : x_transferred (string)

]

}

7 : { »

url : https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

1 : { »

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-38780 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-09-10T17:08:56.155586Z (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-09-11T17:34:44.243Z (string)

}

]

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T04:19:20.307Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-38780", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T17:08:56.155586Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T12:42:25.476Z"}}], "cna": {"title": "dma-buf/sw-sync: don't enable IRQ from sync_print_obj()", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "1ff116f68560a25656933d5a18e7619cb6773d8a", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "165b25e3ee9333f7b04f8db43895beacb51582ed", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "9d75fab2c14a25553a1664586ed122c316bd1878", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "242b30466879e6defa521573c27e12018276c33a", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "a4ee78244445ab73af22bfc5a5fc543963b25aef", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "8a283cdfc8beeb14024387a925247b563d614e1e", "versionType": "git"}, {"status": "affected", "version": "a6aa8fca4d792c72947e341d7842d2f700534335", "lessThan": "b794918961516f667b0c745aebdfebbb8a98df39", "versionType": "git"}], "programFiles": ["drivers/dma-buf/sync_debug.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "4.14"}, {"status": "unaffected", "version": "0", "lessThan": "4.14", "versionType": "semver"}, {"status": "unaffected", "version": "4.19.316", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.278", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.219", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.15.161", "versionType": "semver", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "6.1.93", "versionType": "semver", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.6.33", "versionType": "semver", "lessThanOrEqual": "6.6.*"}, {"status": "unaffected", "version": "6.9.4", "versionType": "semver", "lessThanOrEqual": "6.9.*"}, {"status": "unaffected", "version": "6.10", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/dma-buf/sync_debug.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a"}, {"url": "https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed"}, {"url": "https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8"}, {"url": "https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878"}, {"url": "https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a"}, {"url": "https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef"}, {"url": "https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e"}, {"url": "https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39"}], "x_generator": {"engine": "bippy-5f407fcff5a0"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-buf/sw-sync: don't enable IRQ from sync_print_obj()\n\nSince commit a6aa8fca4d79 (\"dma-buf/sw-sync: Reduce irqsave/irqrestore from\nknown context\") by error replaced spin_unlock_irqrestore() with\nspin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite\nsync_print_obj() is called from sync_debugfs_show(), lockdep complains\ninconsistent lock state warning.\n\nUse plain spin_{lock,unlock}() for sync_print_obj(), for\nsync_debugfs_show() is already using spin_{lock,unlock}_irq()."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-12-19T09:06:24.532Z"}}}, "cveMetadata": {"cveId": "CVE-2024-38780", "state": "PUBLISHED", "dateUpdated": "2024-12-19T09:06:24.532Z", "dateReserved": "2024-06-21T10:12:11.516Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-06-21T11:15:12.892Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878 (string)

tags : [ »

0 : x_transferred (string)

]

}

4 : { »

url : https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a (string)

tags : [ »

0 : x_transferred (string)

]

}

5 : { »

url : https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

tags : [ »

0 : x_transferred (string)

]

}

6 : { »

url : https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e (string)

tags : [ »

0 : x_transferred (string)

]

}

7 : { »

url : https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T04:19:20.307Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-38780 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-09-10T17:08:56.155586Z (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-09-11T12:42:25.476Z (string)

}

]

cna : { »

title : dma-buf/sw-sync: don't enable IRQ from sync_print_obj() (string)

affected : [ »

0 : { »

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

vendor : Linux (string)

product : Linux (string)

versions : [ »

0 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 1ff116f68560a25656933d5a18e7619cb6773d8a (string)

versionType : git (string)

}

1 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 165b25e3ee9333f7b04f8db43895beacb51582ed (string)

versionType : git (string)

}

2 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

versionType : git (string)

}

3 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 9d75fab2c14a25553a1664586ed122c316bd1878 (string)

versionType : git (string)

}

4 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 242b30466879e6defa521573c27e12018276c33a (string)

versionType : git (string)

}

5 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

versionType : git (string)

}

6 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : 8a283cdfc8beeb14024387a925247b563d614e1e (string)

versionType : git (string)

}

7 : { »

status : affected (string)

version : a6aa8fca4d792c72947e341d7842d2f700534335 (string)

lessThan : b794918961516f667b0c745aebdfebbb8a98df39 (string)

versionType : git (string)

}

]

programFiles : [ »

0 : drivers/dma-buf/sync_debug.c (string)

]

defaultStatus : unaffected (string)

}

1 : { »

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

vendor : Linux (string)

product : Linux (string)

versions : [ »

0 : { »

status : affected (string)

version : 4.14 (string)

}

1 : { »

status : unaffected (string)

version : 0 (string)

lessThan : 4.14 (string)

versionType : semver (string)

}

2 : { »

status : unaffected (string)

version : 4.19.316 (string)

versionType : semver (string)

lessThanOrEqual : 4.19.* (string)

}

3 : { »

status : unaffected (string)

version : 5.4.278 (string)

versionType : semver (string)

lessThanOrEqual : 5.4.* (string)

}

4 : { »

status : unaffected (string)

version : 5.10.219 (string)

versionType : semver (string)

lessThanOrEqual : 5.10.* (string)

}

5 : { »

status : unaffected (string)

version : 5.15.161 (string)

versionType : semver (string)

lessThanOrEqual : 5.15.* (string)

}

6 : { »

status : unaffected (string)

version : 6.1.93 (string)

versionType : semver (string)

lessThanOrEqual : 6.1.* (string)

}

7 : { »

status : unaffected (string)

version : 6.6.33 (string)

versionType : semver (string)

lessThanOrEqual : 6.6.* (string)

}

8 : { »

status : unaffected (string)

version : 6.9.4 (string)

versionType : semver (string)

lessThanOrEqual : 6.9.* (string)

}

9 : { »

status : unaffected (string)

version : 6.10 (string)

versionType : original_commit_for_fix (string)

lessThanOrEqual : * (string)

}

]

programFiles : [ »

0 : drivers/dma-buf/sync_debug.c (string)

]

defaultStatus : affected (string)

}

]

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a (string)

}

1 : { »

url : https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed (string)

}

2 : { »

url : https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

}

3 : { »

url : https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878 (string)

}

4 : { »

url : https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a (string)

}

5 : { »

url : https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

}

6 : { »

url : https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e (string)

}

7 : { »

url : https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39 (string)

}

]

x_generator : { »

engine : bippy-5f407fcff5a0 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from known context") by error replaced spin_unlock_irqrestore() with spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite sync_print_obj() is called from sync_debugfs_show(), lockdep complains inconsistent lock state warning. Use plain spin_{lock,unlock}() for sync_print_obj(), for sync_debugfs_show() is already using spin_{lock,unlock}_irq(). (string)

}

]

providerMetadata : { »

orgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

shortName : Linux (string)

dateUpdated : 2024-12-19T09:06:24.532Z (string)

}

cveMetadata : { »

cveId : CVE-2024-38780 (string)

state : PUBLISHED (string)

dateUpdated : 2024-12-19T09:06:24.532Z (string)

dateReserved : 2024-06-21T10:12:11.516Z (string)

assignerOrgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

datePublished : 2024-06-21T11:15:12.892Z (string)

assignerShortName : Linux (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "B315D019-A13E-4F3D-A112-34814763334F", "versionEndExcluding": "4.14", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "34445C8D-D7E6-4796-B792-C9257E89257B", "versionEndExcluding": "4.19.316", "versionStartIncluding": "4.19", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "8E2371B0-4787-4038-B526-021D4CF93B31", "versionEndExcluding": "5.4.278", "versionStartIncluding": "5.4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "5311C980-4CDF-4C10-8875-F04ED0F03398", "versionEndExcluding": "5.10.219", "versionStartIncluding": "5.10", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "E2AB5A01-EFFD-4A24-8CCB-4A016C8C4BB3", "versionEndExcluding": "5.15.161", "versionStartIncluding": "5.15", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "7446FC33-DC4F-4D31-94B5-FB577CFA66F4", "versionEndExcluding": "6.1.93", "versionStartIncluding": "6.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "53BC60D9-65A5-4D8F-96C8-149F09214DBD", "versionEndExcluding": "6.6.33", "versionStartIncluding": "6.6", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "A500F935-F0ED-4DC7-AD02-9D7C365D13AE", "versionEndExcluding": "6.9.4", "versionStartIncluding": "6.9", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.10.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "C40DD2D9-90E3-4E95-9F1A-E7C680F11F2A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-buf/sw-sync: don't enable IRQ from sync_print_obj()\n\nSince commit a6aa8fca4d79 (\"dma-buf/sw-sync: Reduce irqsave/irqrestore from\nknown context\") by error replaced spin_unlock_irqrestore() with\nspin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite\nsync_print_obj() is called from sync_debugfs_show(), lockdep complains\ninconsistent lock state warning.\n\nUse plain spin_{lock,unlock}() for sync_print_obj(), for\nsync_debugfs_show() is already using spin_{lock,unlock}_irq()."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: dma-buf/sw-sync: no habilitar IRQ desde sync_print_obj() Desde el commit a6aa8fca4d79 (\"dma-buf/sw-sync: reducir irqsave/irqrestore desde el contexto conocido\" ) por error reemplaz\u00f3 spin_unlock_irqrestore() con spin_unlock_irq() tanto para sync_debugfs_show() como para sync_print_obj() a pesar de que sync_print_obj() se llama desde sync_debugfs_show(), lockdep se queja de una advertencia de estado de bloqueo inconsistente. Utilice spin_{lock,unlock}() simple para sync_print_obj(), ya que sync_debugfs_show() ya est\u00e1 usando spin_{lock,unlock}_irq()."}], "id": "CVE-2024-38780", "lastModified": "2024-11-21T09:26:48.823", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-06-21T12:15:11.253", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-667"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B315D019-A13E-4F3D-A112-34814763334F (string)

versionEndExcluding : 4.14 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 34445C8D-D7E6-4796-B792-C9257E89257B (string)

versionEndExcluding : 4.19.316 (string)

versionStartIncluding : 4.19 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 8E2371B0-4787-4038-B526-021D4CF93B31 (string)

versionEndExcluding : 5.4.278 (string)

versionStartIncluding : 5.4 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 5311C980-4CDF-4C10-8875-F04ED0F03398 (string)

versionEndExcluding : 5.10.219 (string)

versionStartIncluding : 5.10 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : E2AB5A01-EFFD-4A24-8CCB-4A016C8C4BB3 (string)

versionEndExcluding : 5.15.161 (string)

versionStartIncluding : 5.15 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7446FC33-DC4F-4D31-94B5-FB577CFA66F4 (string)

versionEndExcluding : 6.1.93 (string)

versionStartIncluding : 6.1 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 53BC60D9-65A5-4D8F-96C8-149F09214DBD (string)

versionEndExcluding : 6.6.33 (string)

versionStartIncluding : 6.6 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : A500F935-F0ED-4DC7-AD02-9D7C365D13AE (string)

versionEndExcluding : 6.9.4 (string)

versionStartIncluding : 6.9 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:linux:linux_kernel:6.10.0:rc1:*:*:*:*:*:* (string)

matchCriteriaId : C40DD2D9-90E3-4E95-9F1A-E7C680F11F2A (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from known context") by error replaced spin_unlock_irqrestore() with spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite sync_print_obj() is called from sync_debugfs_show(), lockdep complains inconsistent lock state warning. Use plain spin_{lock,unlock}() for sync_print_obj(), for sync_debugfs_show() is already using spin_{lock,unlock}_irq(). (string)

}

1 : { »

lang : es (string)

value : En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: dma-buf/sw-sync: no habilitar IRQ desde sync_print_obj() Desde el commit a6aa8fca4d79 ("dma-buf/sw-sync: reducir irqsave/irqrestore desde el contexto conocido" ) por error reemplazó spin_unlock_irqrestore() con spin_unlock_irq() tanto para sync_debugfs_show() como para sync_print_obj() a pesar de que sync_print_obj() se llama desde sync_debugfs_show(), lockdep se queja de una advertencia de estado de bloqueo inconsistente. Utilice spin_{lock,unlock}() simple para sync_print_obj(), ya que sync_debugfs_show() ya está usando spin_{lock,unlock}_irq(). (string)

}

]

id : CVE-2024-38780 (string)

lastModified : 2024-11-21T09:26:48.823 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.8 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2024-06-21T12:15:11.253 (string)

references : [ »

0 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed (string)

}

1 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a (string)

}

2 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a (string)

}

3 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e (string)

}

4 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878 (string)

}

5 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

}

6 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

}

7 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39 (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e (string)

}

12 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878 (string)

}

13 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef (string)

}

14 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8 (string)

}

15 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39 (string)

}

]

sourceIdentifier : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-667 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"bugzilla": {"description": "kernel: dma-buf/sw-sync: don&#39;t enable IRQ from sync_print_obj()", "id": "2293643", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293643"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.4", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-667", "details": ["In the Linux kernel, the following vulnerability has been resolved:\ndma-buf/sw-sync: don't enable IRQ from sync_print_obj()\nSince commit a6aa8fca4d79 (\"dma-buf/sw-sync: Reduce irqsave/irqrestore from\nknown context\") by error replaced spin_unlock_irqrestore() with\nspin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite\nsync_print_obj() is called from sync_debugfs_show(), lockdep complains\ninconsistent lock state warning.\nUse plain spin_{lock,unlock}() for sync_print_obj(), for\nsync_debugfs_show() is already using spin_{lock,unlock}_irq()."], "name": "CVE-2024-38780", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-06-21T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-38780\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-38780\nhttps://lore.kernel.org/linux-cve-announce/2024062119-CVE-2024-38780-d90f@gregkh/T"], "threat_severity": "Low"}

{

bugzilla : { »

description : kernel: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() (string)

id : 2293643 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=2293643 (string)

}

csaw : false (boolean)

cvss3 : { »

cvss3_base_score : 4.4 (string)

cvss3_scoring_vector : CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H (string)

status : draft (string)

}

cwe : CWE-667 (string)

details : [ »

0 : In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from known context") by error replaced spin_unlock_irqrestore() with spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite sync_print_obj() is called from sync_debugfs_show(), lockdep complains inconsistent lock state warning. Use plain spin_{lock,unlock}() for sync_print_obj(), for sync_debugfs_show() is already using spin_{lock,unlock}_irq(). (string)

]

name : CVE-2024-38780 (string)

package_state : [ »

0 : { »

cpe : cpe:/o:redhat:enterprise_linux:6 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 6 (string)

}

1 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

2 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

3 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

4 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

5 : { »

cpe : cpe:/o:redhat:enterprise_linux:9 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 9 (string)

}

6 : { »

cpe : cpe:/o:redhat:enterprise_linux:9 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 9 (string)

}

]

public_date : 2024-06-21T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2024-38780 https://nvd.nist.gov/vuln/detail/CVE-2024-38780 https://lore.kernel.org/linux-cve-announce/2024062119-CVE-2024-38780-d90f@gregkh/T (string)

]

threat_severity : Low (string)

}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object