In the Linux kernel, the following vulnerability has been resolved:
mmc: davinci: Don't strip remove function when driver is builtin
Using __exit for the remove function results in the remove callback being
discarded with CONFIG_MMC_DAVINCI=y. When such a device gets unbound (e.g.
using sysfs or hotplug), the driver is just removed without the cleanup
being performed. This results in resource leaks. Fix it by compiling in the
remove callback unconditionally.
This also fixes a W=1 modpost warning:
WARNING: modpost: drivers/mmc/host/davinci_mmc: section mismatch in
reference: davinci_mmcsd_driver+0x10 (section: .data) ->
davinci_mmcsd_remove (section: .exit.text)
Metrics
Affected Vendors & Products
References
History
Wed, 06 Nov 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-07-05T06:55:11.970Z
Updated: 2024-12-19T09:07:04.674Z
Reserved: 2024-06-25T14:23:23.747Z
Link: CVE-2024-39484
Vulnrichment
Updated: 2024-08-02T04:26:15.466Z
NVD
Status : Modified
Published: 2024-07-05T07:15:10.823
Modified: 2024-11-21T09:27:47.333
Link: CVE-2024-39484
Redhat