216.73.217.50

CVE-2024-46868

· Published 27/09/2024 13:15 · Modified 01/10/2024 17:09

Labels: CVE-2024-46868 2024-09-27416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2024-46868CWE-667

Essential information

Published
27/09/2024 13:15
Modified
01/10/2024 17:09
Author
Creator
CVSS
5.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: Fix deadlock in qcuefi_acquire() If the __qcuefi pointer is not set, then in the original code, we would hold onto the lock. That means that if we tried to set it later, then it would cause a deadlock. Drop the lock on the error path. That's what all the callers are expecting.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD
View on NVD

Affected products (CPE)

ProductCPE
linux / linux kernel cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc3:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc4:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc5:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc6:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:6.11:rc7:*:*:*:*:*:*

References