CVE-2024-36029

medium

Description

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci-msm: pervent access to suspended controller Generic sdhci code registers LED device and uses host->runtime_suspended flag to protect access to it. The sdhci-msm driver doesn't set this flag, which causes a crash when LED is accessed while controller is runtime suspended. Fix this by setting the flag correctly.

References

https://git.kernel.org/stable/c/f8def10f73a516b771051a2f70f2f0446902cb4f

https://git.kernel.org/stable/c/f653b04a818c490b045c97834d559911479aa1c5

https://git.kernel.org/stable/c/a957ea5aa3d3518067a1ba32c6127322ad348d20

https://git.kernel.org/stable/c/56b99a52229d7f8cd1f53d899f57aa7eb4b199af

https://git.kernel.org/stable/c/1200481cd6069d16ce20133bcd86f5825e26a045

Details

Source: Mitre, NVD

Published: 2024-05-30

Updated: 2024-05-30

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium