ghsa-xf23-pxxh-7q46
Vulnerability from github
Published
2024-05-01 15:30
Modified
2024-05-01 15:30
Details
In the Linux kernel, the following vulnerability has been resolved:
xen/evtchn: avoid WARN() when unbinding an event channel
When unbinding a user event channel, the related handler might be called a last time in case the kernel was built with CONFIG_DEBUG_SHIRQ. This might cause a WARN() in the handler.
Avoid that by adding an "unbinding" flag to struct user_event which will short circuit the handler.
{ "affected": [], "aliases": [ "CVE-2024-27067" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2024-05-01T13:15:50Z", "severity": null }, "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/evtchn: avoid WARN() when unbinding an event channel\n\nWhen unbinding a user event channel, the related handler might be\ncalled a last time in case the kernel was built with\nCONFIG_DEBUG_SHIRQ. This might cause a WARN() in the handler.\n\nAvoid that by adding an \"unbinding\" flag to struct user_event which\nwill short circuit the handler.", "id": "GHSA-xf23-pxxh-7q46", "modified": "2024-05-01T15:30:36Z", "published": "2024-05-01T15:30:36Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27067" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/35485dad6e28f9b17884764d4692b1655cb848d0" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/51c23bd691c0f1fb95b29731c356c6fd69925d17" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/99e425032c6ec13584d3cd33846e0c7307501b47" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/9e2d4b58c1da48a32905802aaeadba7084b46895" } ], "schema_version": "1.4.0", "severity": [] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.