Vulnerability-Lookup

CVE-2023-52884 (GCVE-0-2023-52884)

Vulnerability from cvelistv5 – Published: 2024-06-21 10:18 – Updated: 2026-05-11 19:34

Title

Input: cyapa - add missing input core locking to suspend/resume functions

Summary

In the Linux kernel, the following vulnerability has been resolved: Input: cyapa - add missing input core locking to suspend/resume functions Grab input->mutex during suspend/resume functions like it is done in other input drivers. This fixes the following warning during system suspend/resume cycle on Samsung Exynos5250-based Snow Chromebook: ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c Modules linked in: ... CPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G W 6.6.0-rc5-next-20231009 #14109 Hardware name: Samsung Exynos (Flattened Device Tree) Workqueue: events_unbound async_run_entry_fn unwind_backtrace from show_stack+0x10/0x14 show_stack from dump_stack_lvl+0x58/0x70 dump_stack_lvl from __warn+0x1a8/0x1cc __warn from warn_slowpath_fmt+0x18c/0x1b4 warn_slowpath_fmt from input_device_enabled+0x68/0x6c input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c cyapa_reinitialize from cyapa_resume+0x48/0x98 cyapa_resume from dpm_run_callback+0x90/0x298 dpm_run_callback from device_resume+0xb4/0x258 device_resume from async_resume+0x20/0x64 async_resume from async_run_entry_fn+0x40/0x15c async_run_entry_fn from process_scheduled_works+0xbc/0x6a8 process_scheduled_works from worker_thread+0x188/0x454 worker_thread from kthread+0x108/0x140 kthread from ret_from_fork+0x14/0x28 Exception stack(0xf1625fb0 to 0xf1625ff8) ... ---[ end trace 0000000000000000 ]--- ... ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c Modules linked in: ... CPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G W 6.6.0-rc5-next-20231009 #14109 Hardware name: Samsung Exynos (Flattened Device Tree) Workqueue: events_unbound async_run_entry_fn unwind_backtrace from show_stack+0x10/0x14 show_stack from dump_stack_lvl+0x58/0x70 dump_stack_lvl from __warn+0x1a8/0x1cc __warn from warn_slowpath_fmt+0x18c/0x1b4 warn_slowpath_fmt from input_device_enabled+0x68/0x6c input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c cyapa_reinitialize from cyapa_resume+0x48/0x98 cyapa_resume from dpm_run_callback+0x90/0x298 dpm_run_callback from device_resume+0xb4/0x258 device_resume from async_resume+0x20/0x64 async_resume from async_run_entry_fn+0x40/0x15c async_run_entry_fn from process_scheduled_works+0xbc/0x6a8 process_scheduled_works from worker_thread+0x188/0x454 worker_thread from kthread+0x108/0x140 kthread from ret_from_fork+0x14/0x28 Exception stack(0xf1625fb0 to 0xf1625ff8) ... ---[ end trace 0000000000000000 ]---

Severity

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-noinfo Not enough information

Assigner

Linux

References

5 references

URL	Tags
https://git.kernel.org/stable/c/f99809fdeb50d65bc…
https://git.kernel.org/stable/c/9400caf566f65c703…
https://git.kernel.org/stable/c/a4c638ab25786bd5a…
https://git.kernel.org/stable/c/a5fc298fa8f67cf1f…
https://git.kernel.org/stable/c/7b4e0b39182cf5e67…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: d69f0a43c677e8afc67a222e1e7b51b9acc69cd3 , < f99809fdeb50d65bcbc1661ef391af94eebb8a75 (git) Affected: d69f0a43c677e8afc67a222e1e7b51b9acc69cd3 , < 9400caf566f65c703e99d95f87b00c4b445627a7 (git) Affected: d69f0a43c677e8afc67a222e1e7b51b9acc69cd3 , < a4c638ab25786bd5aab5978fe51b2b9be16a4ebd (git) Affected: d69f0a43c677e8afc67a222e1e7b51b9acc69cd3 , < a5fc298fa8f67cf1f0e1fc126eab70578cd40adc (git) Affected: d69f0a43c677e8afc67a222e1e7b51b9acc69cd3 , < 7b4e0b39182cf5e677c1fc092a3ec40e621c25b6 (git)
Linux	Linux	Affected: 5.11 Unaffected: 0 , < 5.11 (semver) Unaffected: 5.15.161 , ≤ 5.15.* (semver) Unaffected: 6.1.93 , ≤ 6.1.* (semver) Unaffected: 6.6.33 , ≤ 6.6.* (semver) Unaffected: 6.9.4 , ≤ 6.9.* (semver) Unaffected: 6.10 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 4.4,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "HIGH",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-52884",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-24T17:50:27.641770Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-06T16:02:45.615Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:18:41.179Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/input/mouse/cyapa.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f99809fdeb50d65bcbc1661ef391af94eebb8a75",
              "status": "affected",
              "version": "d69f0a43c677e8afc67a222e1e7b51b9acc69cd3",
              "versionType": "git"
            },
            {
              "lessThan": "9400caf566f65c703e99d95f87b00c4b445627a7",
              "status": "affected",
              "version": "d69f0a43c677e8afc67a222e1e7b51b9acc69cd3",
              "versionType": "git"
            },
            {
              "lessThan": "a4c638ab25786bd5aab5978fe51b2b9be16a4ebd",
              "status": "affected",
              "version": "d69f0a43c677e8afc67a222e1e7b51b9acc69cd3",
              "versionType": "git"
            },
            {
              "lessThan": "a5fc298fa8f67cf1f0e1fc126eab70578cd40adc",
              "status": "affected",
              "version": "d69f0a43c677e8afc67a222e1e7b51b9acc69cd3",
              "versionType": "git"
            },
            {
              "lessThan": "7b4e0b39182cf5e677c1fc092a3ec40e621c25b6",
              "status": "affected",
              "version": "d69f0a43c677e8afc67a222e1e7b51b9acc69cd3",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/input/mouse/cyapa.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.11"
            },
            {
              "lessThan": "5.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.161",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.93",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.33",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.9.*",
              "status": "unaffected",
              "version": "6.9.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.10",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.161",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.93",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.33",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9.4",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.10",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: cyapa - add missing input core locking to suspend/resume functions\n\nGrab input-\u003emutex during suspend/resume functions like it is done in\nother input drivers. This fixes the following warning during system\nsuspend/resume cycle on Samsung Exynos5250-based Snow Chromebook:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\nModules linked in: ...\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\nHardware name: Samsung Exynos (Flattened Device Tree)\nWorkqueue: events_unbound async_run_entry_fn\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x58/0x70\n dump_stack_lvl from __warn+0x1a8/0x1cc\n __warn from warn_slowpath_fmt+0x18c/0x1b4\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\n cyapa_reinitialize from cyapa_resume+0x48/0x98\n cyapa_resume from dpm_run_callback+0x90/0x298\n dpm_run_callback from device_resume+0xb4/0x258\n device_resume from async_resume+0x20/0x64\n async_resume from async_run_entry_fn+0x40/0x15c\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\n process_scheduled_works from worker_thread+0x188/0x454\n worker_thread from kthread+0x108/0x140\n kthread from ret_from_fork+0x14/0x28\nException stack(0xf1625fb0 to 0xf1625ff8)\n...\n---[ end trace 0000000000000000 ]---\n...\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\nModules linked in: ...\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\nHardware name: Samsung Exynos (Flattened Device Tree)\nWorkqueue: events_unbound async_run_entry_fn\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x58/0x70\n dump_stack_lvl from __warn+0x1a8/0x1cc\n __warn from warn_slowpath_fmt+0x18c/0x1b4\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\n cyapa_reinitialize from cyapa_resume+0x48/0x98\n cyapa_resume from dpm_run_callback+0x90/0x298\n dpm_run_callback from device_resume+0xb4/0x258\n device_resume from async_resume+0x20/0x64\n async_resume from async_run_entry_fn+0x40/0x15c\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\n process_scheduled_works from worker_thread+0x188/0x454\n worker_thread from kthread+0x108/0x140\n kthread from ret_from_fork+0x14/0x28\nException stack(0xf1625fb0 to 0xf1625ff8)\n...\n---[ end trace 0000000000000000 ]---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T19:34:53.543Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75"
        },
        {
          "url": "https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7"
        },
        {
          "url": "https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd"
        },
        {
          "url": "https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc"
        },
        {
          "url": "https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6"
        }
      ],
      "title": "Input: cyapa - add missing input core locking to suspend/resume functions",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52884",
    "datePublished": "2024-06-21T10:18:03.669Z",
    "dateReserved": "2024-05-21T15:35:00.782Z",
    "dateUpdated": "2026-05-11T19:34:53.543Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-52884",
      "date": "2026-06-05",
      "epss": "0.00011",
      "percentile": "0.01406"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nInput: cyapa - add missing input core locking to suspend/resume functions\\n\\nGrab input-\u003emutex during suspend/resume functions like it is done in\\nother input drivers. This fixes the following warning during system\\nsuspend/resume cycle on Samsung Exynos5250-based Snow Chromebook:\\n\\n------------[ cut here ]------------\\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\\nModules linked in: ...\\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\\nHardware name: Samsung Exynos (Flattened Device Tree)\\nWorkqueue: events_unbound async_run_entry_fn\\n unwind_backtrace from show_stack+0x10/0x14\\n show_stack from dump_stack_lvl+0x58/0x70\\n dump_stack_lvl from __warn+0x1a8/0x1cc\\n __warn from warn_slowpath_fmt+0x18c/0x1b4\\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\\n cyapa_reinitialize from cyapa_resume+0x48/0x98\\n cyapa_resume from dpm_run_callback+0x90/0x298\\n dpm_run_callback from device_resume+0xb4/0x258\\n device_resume from async_resume+0x20/0x64\\n async_resume from async_run_entry_fn+0x40/0x15c\\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\\n process_scheduled_works from worker_thread+0x188/0x454\\n worker_thread from kthread+0x108/0x140\\n kthread from ret_from_fork+0x14/0x28\\nException stack(0xf1625fb0 to 0xf1625ff8)\\n...\\n---[ end trace 0000000000000000 ]---\\n...\\n------------[ cut here ]------------\\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\\nModules linked in: ...\\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\\nHardware name: Samsung Exynos (Flattened Device Tree)\\nWorkqueue: events_unbound async_run_entry_fn\\n unwind_backtrace from show_stack+0x10/0x14\\n show_stack from dump_stack_lvl+0x58/0x70\\n dump_stack_lvl from __warn+0x1a8/0x1cc\\n __warn from warn_slowpath_fmt+0x18c/0x1b4\\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\\n cyapa_reinitialize from cyapa_resume+0x48/0x98\\n cyapa_resume from dpm_run_callback+0x90/0x298\\n dpm_run_callback from device_resume+0xb4/0x258\\n device_resume from async_resume+0x20/0x64\\n async_resume from async_run_entry_fn+0x40/0x15c\\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\\n process_scheduled_works from worker_thread+0x188/0x454\\n worker_thread from kthread+0x108/0x140\\n kthread from ret_from_fork+0x14/0x28\\nException stack(0xf1625fb0 to 0xf1625ff8)\\n...\\n---[ end trace 0000000000000000 ]---\"}, {\"lang\": \"es\", \"value\": \"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: Entrada: cyapa: agrega bloqueo del n\\u00facleo de entrada faltante para suspender/reanudar funciones. Toma entrada-\u0026gt;mutex durante las funciones de suspensi\\u00f3n/reanudaci\\u00f3n como se hace en otros controladores de entrada. Esto corrige la siguiente advertencia durante el ciclo de suspensi\\u00f3n/reanudaci\\u00f3n del sistema en Snow Chromebook basado en Samsung Exynos5250: ------------[ cortar aqu\\u00ed ]------------ ADVERTENCIA: CPU : 1 PID: 1680 en drivers/input/input.c:2291 input_device_enabled+0x68/0x6c M\\u00f3dulos vinculados en: ... CPU: 1 PID: 1680 Comm: kworker/u4:12 Contaminado: GW 6.6.0-rc5-next -20231009 #14109 Nombre de hardware: Samsung Exynos (\\u00e1rbol de dispositivos aplanados) Cola de trabajo: events_unbound async_run_entry_fn unwind_backtrace de show_stack+0x10/0x14 show_stack de dump_stack_lvl+0x58/0x70 dump_stack_lvl de __warn+0x1a8/0x1cc __warn de warn _slowpath_fmt+0x18c/0x1b4 warn_slowpath_fmt de input_device_enabled+ 0x68/0x6c input_device_enabled de cyapa_gen3_set_power_mode+0x13c/0x1dc cyapa_gen3_set_power_mode de cyapa_reinitialize+0x10c/0x15c cyapa_reinitialize de cyapa_resume+0x48/0x98 cyapa_resume de dpm_run_callback+0x90/ 0x298 dpm_run_callback de dispositivo_resume+0xb4/0x258 dispositivo_resume de async_resume+0x20/0x64 async_resume de async_run_entry_fn+0x40 /0x15c async_run_entry_fn de Process_scheduled_works+0xbc/0x6a8 Process_scheduled_works de trabajador_thread+0x188/0x454 trabajador_thread de kthread+0x108/0x140 kthread de ret_from_fork+0x14/0x28 Pila de excepciones (0xf1625fb0 a 0xf1 625ff8) ... ---[ final de seguimiento 0000000000000000 ]-- - ... ------------[ cortar aqu\\u00ed ]------------ ADVERTENCIA: CPU: 1 PID: 1680 en drivers/input/input.c:2291 input_device_enabled+0x68/0x6c M\\u00f3dulos vinculados en: ... CPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: GW 6.6.0-rc5-next-20231009 #14109 Nombre de hardware: Samsung Exynos (\\u00e1rbol de dispositivos aplanados) Cola de trabajo : events_unbound async_run_entry_fn unwind_backtrace de show_stack+0x10/0x14 show_stack de dump_stack_lvl+0x58/0x70 dump_stack_lvl de __warn+0x1a8/0x1cc __warn de warn_slowpath_fmt+0x18c/0x1b4 warn_slowpath_fmt de input_ dispositivo_enabled+0x68/0x6c input_device_enabled de cyapa_gen3_set_power_mode+0x13c/0x1dc cyapa_gen3_set_power_mode de cyapa_reinitialize+0x10c /0x15c cyapa_reinitialize de cyapa_resume+0x48/0x98 cyapa_resume de dpm_run_callback+0x90/0x298 dpm_run_callback de device_resume+0xb4/0x258 device_resume de async_resume+0x20/0x64 async_resume de async_run_entry_fn+0x40/0x 15c async_run_entry_fn de Process_scheduled_works+0xbc/0x6a8 Process_scheduled_works de trabajador_thread+0x188/ 0x454 work_thread de kthread+0x108/0x140 kthread de ret_from_fork+0x14/0x28 Pila de excepciones (0xf1625fb0 a 0xf1625ff8)... ---[fin de seguimiento 0000000000000000]---\"}]",
      "id": "CVE-2023-52884",
      "lastModified": "2024-11-21T08:40:47.827",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 4.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 3.6}]}",
      "published": "2024-06-21T11:15:09.560",
      "references": "[{\"url\": \"https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "vulnStatus": "Awaiting Analysis"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-52884\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-06-21T11:15:09.560\",\"lastModified\":\"2025-03-24T18:10:20.320\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nInput: cyapa - add missing input core locking to suspend/resume functions\\n\\nGrab input-\u003emutex during suspend/resume functions like it is done in\\nother input drivers. This fixes the following warning during system\\nsuspend/resume cycle on Samsung Exynos5250-based Snow Chromebook:\\n\\n------------[ cut here ]------------\\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\\nModules linked in: ...\\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\\nHardware name: Samsung Exynos (Flattened Device Tree)\\nWorkqueue: events_unbound async_run_entry_fn\\n unwind_backtrace from show_stack+0x10/0x14\\n show_stack from dump_stack_lvl+0x58/0x70\\n dump_stack_lvl from __warn+0x1a8/0x1cc\\n __warn from warn_slowpath_fmt+0x18c/0x1b4\\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\\n cyapa_reinitialize from cyapa_resume+0x48/0x98\\n cyapa_resume from dpm_run_callback+0x90/0x298\\n dpm_run_callback from device_resume+0xb4/0x258\\n device_resume from async_resume+0x20/0x64\\n async_resume from async_run_entry_fn+0x40/0x15c\\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\\n process_scheduled_works from worker_thread+0x188/0x454\\n worker_thread from kthread+0x108/0x140\\n kthread from ret_from_fork+0x14/0x28\\nException stack(0xf1625fb0 to 0xf1625ff8)\\n...\\n---[ end trace 0000000000000000 ]---\\n...\\n------------[ cut here ]------------\\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\\nModules linked in: ...\\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\\nHardware name: Samsung Exynos (Flattened Device Tree)\\nWorkqueue: events_unbound async_run_entry_fn\\n unwind_backtrace from show_stack+0x10/0x14\\n show_stack from dump_stack_lvl+0x58/0x70\\n dump_stack_lvl from __warn+0x1a8/0x1cc\\n __warn from warn_slowpath_fmt+0x18c/0x1b4\\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\\n cyapa_reinitialize from cyapa_resume+0x48/0x98\\n cyapa_resume from dpm_run_callback+0x90/0x298\\n dpm_run_callback from device_resume+0xb4/0x258\\n device_resume from async_resume+0x20/0x64\\n async_resume from async_run_entry_fn+0x40/0x15c\\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\\n process_scheduled_works from worker_thread+0x188/0x454\\n worker_thread from kthread+0x108/0x140\\n kthread from ret_from_fork+0x14/0x28\\nException stack(0xf1625fb0 to 0xf1625ff8)\\n...\\n---[ end trace 0000000000000000 ]---\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: Entrada: cyapa: agrega bloqueo del n\u00facleo de entrada faltante para suspender/reanudar funciones. Toma entrada-\u0026gt;mutex durante las funciones de suspensi\u00f3n/reanudaci\u00f3n como se hace en otros controladores de entrada. Esto corrige la siguiente advertencia durante el ciclo de suspensi\u00f3n/reanudaci\u00f3n del sistema en Snow Chromebook basado en Samsung Exynos5250: ------------[ cortar aqu\u00ed ]------------ ADVERTENCIA: CPU : 1 PID: 1680 en drivers/input/input.c:2291 input_device_enabled+0x68/0x6c M\u00f3dulos vinculados en: ... CPU: 1 PID: 1680 Comm: kworker/u4:12 Contaminado: GW 6.6.0-rc5-next -20231009 #14109 Nombre de hardware: Samsung Exynos (\u00e1rbol de dispositivos aplanados) Cola de trabajo: events_unbound async_run_entry_fn unwind_backtrace de show_stack+0x10/0x14 show_stack de dump_stack_lvl+0x58/0x70 dump_stack_lvl de __warn+0x1a8/0x1cc __warn de warn _slowpath_fmt+0x18c/0x1b4 warn_slowpath_fmt de input_device_enabled+ 0x68/0x6c input_device_enabled de cyapa_gen3_set_power_mode+0x13c/0x1dc cyapa_gen3_set_power_mode de cyapa_reinitialize+0x10c/0x15c cyapa_reinitialize de cyapa_resume+0x48/0x98 cyapa_resume de dpm_run_callback+0x90/ 0x298 dpm_run_callback de dispositivo_resume+0xb4/0x258 dispositivo_resume de async_resume+0x20/0x64 async_resume de async_run_entry_fn+0x40 /0x15c async_run_entry_fn de Process_scheduled_works+0xbc/0x6a8 Process_scheduled_works de trabajador_thread+0x188/0x454 trabajador_thread de kthread+0x108/0x140 kthread de ret_from_fork+0x14/0x28 Pila de excepciones (0xf1625fb0 a 0xf1 625ff8) ... ---[ final de seguimiento 0000000000000000 ]-- - ... ------------[ cortar aqu\u00ed ]------------ ADVERTENCIA: CPU: 1 PID: 1680 en drivers/input/input.c:2291 input_device_enabled+0x68/0x6c M\u00f3dulos vinculados en: ... CPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: GW 6.6.0-rc5-next-20231009 #14109 Nombre de hardware: Samsung Exynos (\u00e1rbol de dispositivos aplanados) Cola de trabajo : events_unbound async_run_entry_fn unwind_backtrace de show_stack+0x10/0x14 show_stack de dump_stack_lvl+0x58/0x70 dump_stack_lvl de __warn+0x1a8/0x1cc __warn de warn_slowpath_fmt+0x18c/0x1b4 warn_slowpath_fmt de input_ dispositivo_enabled+0x68/0x6c input_device_enabled de cyapa_gen3_set_power_mode+0x13c/0x1dc cyapa_gen3_set_power_mode de cyapa_reinitialize+0x10c /0x15c cyapa_reinitialize de cyapa_resume+0x48/0x98 cyapa_resume de dpm_run_callback+0x90/0x298 dpm_run_callback de device_resume+0xb4/0x258 device_resume de async_resume+0x20/0x64 async_resume de async_run_entry_fn+0x40/0x 15c async_run_entry_fn de Process_scheduled_works+0xbc/0x6a8 Process_scheduled_works de trabajador_thread+0x188/ 0x454 work_thread de kthread+0x108/0x140 kthread de ret_from_fork+0x14/0x28 Pila de excepciones (0xf1625fb0 a 0xf1625ff8)... ---[fin de seguimiento 0000000000000000]---\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-667\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.15.161\",\"matchCriteriaId\":\"31130639-53FE-4726-8986-434EE2528CB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.93\",\"matchCriteriaId\":\"EEFB78EE-F990-4197-BF1C-156760A55667\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.33\",\"matchCriteriaId\":\"FCE796DF-3B50-4DC6-BAE5-95271068FC9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.9.4\",\"matchCriteriaId\":\"991B9791-966A-4D18-9E8D-A8AB128E5627\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T23:18:41.179Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.4, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-52884\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-06-24T17:50:27.641770Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"CWE-noinfo Not enough information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-24T17:50:32.164Z\"}}], \"cna\": {\"title\": \"Input: cyapa - add missing input core locking to suspend/resume functions\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"d69f0a43c677\", \"lessThan\": \"f99809fdeb50\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d69f0a43c677\", \"lessThan\": \"9400caf566f6\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d69f0a43c677\", \"lessThan\": \"a4c638ab2578\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d69f0a43c677\", \"lessThan\": \"a5fc298fa8f6\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d69f0a43c677\", \"lessThan\": \"7b4e0b39182c\", \"versionType\": \"git\"}], \"programFiles\": [\"drivers/input/mouse/cyapa.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.11\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"5.11\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.15.161\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.93\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.6.33\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.9.4\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.9.*\"}, {\"status\": \"unaffected\", \"version\": \"6.10\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"drivers/input/mouse/cyapa.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/f99809fdeb50d65bcbc1661ef391af94eebb8a75\"}, {\"url\": \"https://git.kernel.org/stable/c/9400caf566f65c703e99d95f87b00c4b445627a7\"}, {\"url\": \"https://git.kernel.org/stable/c/a4c638ab25786bd5aab5978fe51b2b9be16a4ebd\"}, {\"url\": \"https://git.kernel.org/stable/c/a5fc298fa8f67cf1f0e1fc126eab70578cd40adc\"}, {\"url\": \"https://git.kernel.org/stable/c/7b4e0b39182cf5e677c1fc092a3ec40e621c25b6\"}], \"x_generator\": {\"engine\": \"bippy-9e1c9544281a\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nInput: cyapa - add missing input core locking to suspend/resume functions\\n\\nGrab input-\u003emutex during suspend/resume functions like it is done in\\nother input drivers. This fixes the following warning during system\\nsuspend/resume cycle on Samsung Exynos5250-based Snow Chromebook:\\n\\n------------[ cut here ]------------\\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\\nModules linked in: ...\\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\\nHardware name: Samsung Exynos (Flattened Device Tree)\\nWorkqueue: events_unbound async_run_entry_fn\\n unwind_backtrace from show_stack+0x10/0x14\\n show_stack from dump_stack_lvl+0x58/0x70\\n dump_stack_lvl from __warn+0x1a8/0x1cc\\n __warn from warn_slowpath_fmt+0x18c/0x1b4\\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\\n cyapa_reinitialize from cyapa_resume+0x48/0x98\\n cyapa_resume from dpm_run_callback+0x90/0x298\\n dpm_run_callback from device_resume+0xb4/0x258\\n device_resume from async_resume+0x20/0x64\\n async_resume from async_run_entry_fn+0x40/0x15c\\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\\n process_scheduled_works from worker_thread+0x188/0x454\\n worker_thread from kthread+0x108/0x140\\n kthread from ret_from_fork+0x14/0x28\\nException stack(0xf1625fb0 to 0xf1625ff8)\\n...\\n---[ end trace 0000000000000000 ]---\\n...\\n------------[ cut here ]------------\\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\\nModules linked in: ...\\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G        W          6.6.0-rc5-next-20231009 #14109\\nHardware name: Samsung Exynos (Flattened Device Tree)\\nWorkqueue: events_unbound async_run_entry_fn\\n unwind_backtrace from show_stack+0x10/0x14\\n show_stack from dump_stack_lvl+0x58/0x70\\n dump_stack_lvl from __warn+0x1a8/0x1cc\\n __warn from warn_slowpath_fmt+0x18c/0x1b4\\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\\n cyapa_reinitialize from cyapa_resume+0x48/0x98\\n cyapa_resume from dpm_run_callback+0x90/0x298\\n dpm_run_callback from device_resume+0xb4/0x258\\n device_resume from async_resume+0x20/0x64\\n async_resume from async_run_entry_fn+0x40/0x15c\\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\\n process_scheduled_works from worker_thread+0x188/0x454\\n worker_thread from kthread+0x108/0x140\\n kthread from ret_from_fork+0x14/0x28\\nException stack(0xf1625fb0 to 0xf1625ff8)\\n...\\n---[ end trace 0000000000000000 ]---\"}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2024-11-04T14:54:33.656Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-52884\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-06T16:02:45.615Z\", \"dateReserved\": \"2024-05-21T15:35:00.782Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-06-21T10:18:03.669Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

WID-SEC-W-2024-1431

Vulnerability from csaf_certbund - Published: 2024-06-23 22:00 - Updated: 2025-06-04 22:00

Summary

Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff: Ein lokaler Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux

CVE-2023-52884

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-31076

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-36489

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-37353

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-37356

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-38381

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-38388

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-38390

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-38391

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

CVE-2024-38621

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Broadcom Brocade SANnav Broadcom	`cpe:/a:broadcom:brocade_sannav:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Open Source Linux Kernel <6.10-rc1 Open Source / Linux Kernel		<6.10-rc1
IBM InfoSphere Guardium IBM	`cpe:/a:ibm:infosphere_guardium:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
IBM QRadar SIEM <7.5.0 UP10 IF01 IBM / QRadar SIEM		<7.5.0 UP10 IF01

References

94 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lore.kernel.org/linux-cve-announce/202406…	external
https://lists.debian.org/debian-lts-announce/2024…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.debian.org/debian-security-announce…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2024:4831	external
https://access.redhat.com/errata/RHSA-2024:4823	external
https://access.redhat.com/errata/RHSA-2024:5065	external
https://access.redhat.com/errata/RHSA-2024:5102	external
https://access.redhat.com/errata/RHSA-2024:5101	external
https://ubuntu.com/security/notices/USN-6953-1	external
https://ubuntu.com/security/notices/USN-6951-1	external
https://linux.oracle.com/errata/ELSA-2024-5101.html	external
https://linux.oracle.com/errata/ELSA-2024-12581.html	external
https://linux.oracle.com/errata/ELSA-2024-12585.html	external
https://linux.oracle.com/errata/ELSA-2024-12584.html	external
https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-20…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://alas.aws.amazon.com/AL2/ALAS-2024-2613.html	external
https://access.redhat.com/errata/RHSA-2024:5363	external
https://ubuntu.com/security/notices/USN-6951-2	external
https://linux.oracle.com/errata/ELSA-2024-5363.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-6951-3	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-6951-4	external
https://ubuntu.com/security/notices/USN-6979-1	external
https://access.redhat.com/errata/RHSA-2024:6206	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://ubuntu.com/security/notices/USN-6999-1	external
https://linux.oracle.com/errata/ELSA-2024-12611.html	external
https://ubuntu.com/security/notices/USN-7003-2	external
https://ubuntu.com/security/notices/USN-7005-1	external
https://ubuntu.com/security/notices/USN-7004-1	external
https://ubuntu.com/security/notices/USN-7007-1	external
https://ubuntu.com/security/notices/USN-7008-1	external
https://ubuntu.com/security/notices/USN-7009-1	external
https://ubuntu.com/security/notices/USN-7005-2	external
https://ubuntu.com/security/notices/USN-7007-2	external
https://access.redhat.com/errata/RHSA-2024:7001	external
https://ubuntu.com/security/notices/USN-6999-2	external
https://ubuntu.com/security/notices/USN-7029-1	external
https://access.redhat.com/errata/RHSA-2024:6997	external
https://ubuntu.com/security/notices/USN-7007-3	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2024:7000	external
https://ubuntu.com/security/notices/USN-7009-2	external
https://linux.oracle.com/errata/ELSA-2024-7000.html	external
https://linux.oracle.com/errata/ELSA-2024-6997.html	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.opensuse.org/archives/list/security…	external
https://errata.build.resf.org/RLSA-2024:7001	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-7069-1	external
https://ubuntu.com/security/notices/USN-7069-2	external
https://access.redhat.com/errata/RHSA-2024:8318	external
https://www.ibm.com/support/pages/node/7174634	external
https://access.redhat.com/errata/RHSA-2024:9315	external
https://access.redhat.com/errata/RHSA-2024:9497	external
https://access.redhat.com/errata/RHSA-2024:9498	external
https://access.redhat.com/errata/RHSA-2024:9546	external
https://ubuntu.com/security/notices/USN-7110-1	external
https://access.redhat.com/errata/RHSA-2024:10262	external
https://access.redhat.com/errata/RHSA-2024:10772	external
https://access.redhat.com/errata/RHSA-2024:10773	external
https://www.ibm.com/support/pages/node/7181933	external
https://support.broadcom.com/web/ecx/support-cont…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1431 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1431.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1431 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1431"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062131-CVE-2023-52884-5b0d@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062134-CVE-2024-31076-786e@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062136-CVE-2024-36489-7213@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062137-CVE-2024-37353-71d4@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062137-CVE-2024-37356-cc7b@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062137-CVE-2024-38381-07fb@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062137-CVE-2024-38388-fb75@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062138-CVE-2024-38390-395e@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062138-CVE-2024-38391-c792@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Linux CVE Announcement vom 2024-06-23",
        "url": "https://lore.kernel.org/linux-cve-announce/2024062138-CVE-2024-38621-d52e@gregkh/T/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3840 vom 2024-06-27",
        "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2372-1 vom 2024-07-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018901.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2360-1 vom 2024-07-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018907.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2381-1 vom 2024-07-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018916.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2394-1 vom 2024-07-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018922.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5730 vom 2024-07-16",
        "url": "https://lists.debian.org/debian-security-announce/2024/msg00141.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2561-1 vom 2024-07-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019001.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2571-1 vom 2024-07-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019019.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4831 vom 2024-07-24",
        "url": "https://access.redhat.com/errata/RHSA-2024:4831"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4823 vom 2024-07-24",
        "url": "https://access.redhat.com/errata/RHSA-2024:4823"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5065 vom 2024-08-07",
        "url": "https://access.redhat.com/errata/RHSA-2024:5065"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5102 vom 2024-08-08",
        "url": "https://access.redhat.com/errata/RHSA-2024:5102"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5101 vom 2024-08-08",
        "url": "https://access.redhat.com/errata/RHSA-2024:5101"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6953-1 vom 2024-08-09",
        "url": "https://ubuntu.com/security/notices/USN-6953-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6951-1 vom 2024-08-09",
        "url": "https://ubuntu.com/security/notices/USN-6951-1"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-5101 vom 2024-08-09",
        "url": "https://linux.oracle.com/errata/ELSA-2024-5101.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12581 vom 2024-08-13",
        "url": "https://linux.oracle.com/errata/ELSA-2024-12581.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12585 vom 2024-08-13",
        "url": "https://linux.oracle.com/errata/ELSA-2024-12585.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12584 vom 2024-08-13",
        "url": "https://linux.oracle.com/errata/ELSA-2024-12584.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASKERNEL-5.4-2024-077 vom 2024-08-13",
        "url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-2024-077.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2896-1 vom 2024-08-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019185.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2024-2613 vom 2024-08-13",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2613.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5363 vom 2024-08-14",
        "url": "https://access.redhat.com/errata/RHSA-2024:5363"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6951-2 vom 2024-08-14",
        "url": "https://ubuntu.com/security/notices/USN-6951-2"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-5363 vom 2024-08-15",
        "url": "https://linux.oracle.com/errata/ELSA-2024-5363.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2939-1 vom 2024-08-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019211.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6951-3 vom 2024-08-19",
        "url": "https://ubuntu.com/security/notices/USN-6951-3"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2973-1 vom 2024-08-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019280.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6951-4 vom 2024-08-21",
        "url": "https://ubuntu.com/security/notices/USN-6951-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6979-1 vom 2024-08-22",
        "url": "https://ubuntu.com/security/notices/USN-6979-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6206 vom 2024-09-03",
        "url": "https://access.redhat.com/errata/RHSA-2024:6206"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3190-1 vom 2024-09-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019403.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3195-1 vom 2024-09-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019407.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3194-1 vom 2024-09-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019400.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3209-1 vom 2024-09-11",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/YNWVZVIFSX7PLBJX3I3PDZ4MIBERTN2Y/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6999-1 vom 2024-09-11",
        "url": "https://ubuntu.com/security/notices/USN-6999-1"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12611 vom 2024-09-11",
        "url": "https://linux.oracle.com/errata/ELSA-2024-12611.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7003-2 vom 2024-09-12",
        "url": "https://ubuntu.com/security/notices/USN-7003-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7005-1 vom 2024-09-12",
        "url": "https://ubuntu.com/security/notices/USN-7005-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7004-1 vom 2024-09-12",
        "url": "https://ubuntu.com/security/notices/USN-7004-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7007-1 vom 2024-09-13",
        "url": "https://ubuntu.com/security/notices/USN-7007-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7008-1 vom 2024-09-13",
        "url": "https://ubuntu.com/security/notices/USN-7008-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7009-1 vom 2024-09-13",
        "url": "https://ubuntu.com/security/notices/USN-7009-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7005-2 vom 2024-09-13",
        "url": "https://ubuntu.com/security/notices/USN-7005-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7007-2 vom 2024-09-23",
        "url": "https://ubuntu.com/security/notices/USN-7007-2"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7001 vom 2024-09-24",
        "url": "https://access.redhat.com/errata/RHSA-2024:7001"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6999-2 vom 2024-09-23",
        "url": "https://ubuntu.com/security/notices/USN-6999-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7029-1 vom 2024-09-23",
        "url": "https://ubuntu.com/security/notices/USN-7029-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6997 vom 2024-09-24",
        "url": "https://access.redhat.com/errata/RHSA-2024:6997"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7007-3 vom 2024-09-23",
        "url": "https://ubuntu.com/security/notices/USN-7007-3"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3383-1 vom 2024-09-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019497.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7000 vom 2024-09-24",
        "url": "https://access.redhat.com/errata/RHSA-2024:7000"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7009-2 vom 2024-09-25",
        "url": "https://ubuntu.com/security/notices/USN-7009-2"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-7000 vom 2024-09-26",
        "url": "https://linux.oracle.com/errata/ELSA-2024-7000.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-6997 vom 2024-09-26",
        "url": "https://linux.oracle.com/errata/ELSA-2024-6997.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3483-1 vom 2024-09-29",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/2HO244EHQ65DPDJ2NOBAXLG7QYWSCUMA/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3483-1 vom 2024-09-29",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2HO244EHQ65DPDJ2NOBAXLG7QYWSCUMA/"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:7001 vom 2024-09-30",
        "url": "https://errata.build.resf.org/RLSA-2024:7001"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3559-1 vom 2024-10-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019575.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3569-1 vom 2024-10-09",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/6GBL67LQ3MUSYQCQRQH2AZH3XWILTO5A/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3566-1 vom 2024-10-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019578.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3587-1 vom 2024-10-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019588.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3591-1 vom 2024-10-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019587.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3592-1 vom 2024-10-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019589.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7069-1 vom 2024-10-16",
        "url": "https://ubuntu.com/security/notices/USN-7069-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7069-2 vom 2024-10-17",
        "url": "https://ubuntu.com/security/notices/USN-7069-2"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8318 vom 2024-10-23",
        "url": "https://access.redhat.com/errata/RHSA-2024:8318"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin",
        "url": "https://www.ibm.com/support/pages/node/7174634"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9315 vom 2024-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2024:9315"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9497 vom 2024-11-13",
        "url": "https://access.redhat.com/errata/RHSA-2024:9497"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9498 vom 2024-11-13",
        "url": "https://access.redhat.com/errata/RHSA-2024:9498"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9546 vom 2024-11-13",
        "url": "https://access.redhat.com/errata/RHSA-2024:9546"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7110-1 vom 2024-11-14",
        "url": "https://ubuntu.com/security/notices/USN-7110-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10262 vom 2024-11-26",
        "url": "https://access.redhat.com/errata/RHSA-2024:10262"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10772 vom 2024-12-04",
        "url": "https://access.redhat.com/errata/RHSA-2024:10772"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10773 vom 2024-12-04",
        "url": "https://access.redhat.com/errata/RHSA-2024:10773"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7181933 vom 2025-01-29",
        "url": "https://www.ibm.com/support/pages/node/7181933"
      },
      {
        "category": "external",
        "summary": "Brocade Security Advisory BSA-2025-2895 vom 2025-02-13",
        "url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25398"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20008-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021403.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20028-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021386.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20047-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021306.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20044-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021334.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
    "tracking": {
      "current_release_date": "2025-06-04T22:00:00.000+00:00",
      "generator": {
        "date": "2025-06-05T06:12:32.077+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-1431",
      "initial_release_date": "2024-06-23T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-06-23T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-06-27T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-07-09T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-10T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-15T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-07-18T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-22T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-24T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-06T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-07T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-08T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-08-11T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-08-12T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-08-13T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Amazon und SUSE aufgenommen"
        },
        {
          "date": "2024-08-14T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-08-15T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-19T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-08-21T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-08-22T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-09-03T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-10T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-11T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von SUSE, Ubuntu und Oracle Linux aufgenommen"
        },
        {
          "date": "2024-09-12T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-09-15T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-09-22T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-09-23T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat, Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2024-09-24T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-09-25T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-09-29T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-30T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2024-10-09T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-10T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-15T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-10-17T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-10-23T22:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-10-31T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-11-12T23:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-13T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-14T23:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-11-25T23:00:00.000+00:00",
          "number": "40",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-12-03T23:00:00.000+00:00",
          "number": "41",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-01-29T23:00:00.000+00:00",
          "number": "42",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-02-13T23:00:00.000+00:00",
          "number": "43",
          "summary": "Neue Updates von BROCADE aufgenommen"
        },
        {
          "date": "2025-06-04T22:00:00.000+00:00",
          "number": "44",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "44"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Broadcom Brocade SANnav",
            "product": {
              "name": "Broadcom Brocade SANnav",
              "product_id": "T034392",
              "product_identification_helper": {
                "cpe": "cpe:/a:broadcom:brocade_sannav:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Broadcom"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM InfoSphere Guardium",
            "product": {
              "name": "IBM InfoSphere Guardium",
              "product_id": "T002366",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:infosphere_guardium:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.5.0 UP10 IF01",
                "product": {
                  "name": "IBM QRadar SIEM \u003c7.5.0 UP10 IF01",
                  "product_id": "T038741"
                }
              },
              {
                "category": "product_version",
                "name": "7.5.0 UP10 IF01",
                "product": {
                  "name": "IBM QRadar SIEM 7.5.0 UP10 IF01",
                  "product_id": "T038741-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up10_if01"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "QRadar SIEM"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c6.10-rc1",
                "product": {
                  "name": "Open Source Linux Kernel \u003c6.10-rc1",
                  "product_id": "T035616"
                }
              },
              {
                "category": "product_version",
                "name": "6.10-rc1",
                "product": {
                  "name": "Open Source Linux Kernel 6.10-rc1",
                  "product_id": "T035616-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:linux:linux_kernel:6.10-rc1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Linux Kernel"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-52884",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2023-52884"
    },
    {
      "cve": "CVE-2024-31076",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-31076"
    },
    {
      "cve": "CVE-2024-36489",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-36489"
    },
    {
      "cve": "CVE-2024-37353",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-37353"
    },
    {
      "cve": "CVE-2024-37356",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-37356"
    },
    {
      "cve": "CVE-2024-38381",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-38381"
    },
    {
      "cve": "CVE-2024-38388",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-38388"
    },
    {
      "cve": "CVE-2024-38390",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-38390"
    },
    {
      "cve": "CVE-2024-38391",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-38391"
    },
    {
      "cve": "CVE-2024-38621",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T034392",
          "67646",
          "T000126",
          "T035616",
          "T002366",
          "398363",
          "T004914",
          "T032255",
          "T038741"
        ]
      },
      "release_date": "2024-06-23T22:00:00.000+00:00",
      "title": "CVE-2024-38621"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-52884 (GCVE-0-2023-52884)

WID-SEC-W-2024-1431

Tags

Sightings

Nomenclature