CVE-2024-26722

ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()

There is a path in rt5645_jack_detect_work(), where rt5645->jd_mutex
is left locked forever. That may lead to deadlock
when rt5645_jack_detect_work() is called for the second time.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ASoC: rt5645: corrige el punto muerto en rt5645_jack_detect_work() Hay una ruta en rt5645_jack_detect_work(), donde rt5645->jd_mutex queda bloqueado para siempre. Eso puede provocar un punto muerto cuando se llama a rt5645_jack_detect_work() por segunda vez. Encontrado por el Centro de verificación de Linux (linuxtesting.org) con SVACE.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-04-03 CVE Published
2024-04-04 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (17)

URL	Tag	Source
https://git.kernel.org/stable/c/48ce529c83522944f116f03884819051f44f0fb6	Vuln. Introduced
https://git.kernel.org/stable/c/b67005b284ddaf62043468d1ce5905c17d85b0e6	Vuln. Introduced
https://git.kernel.org/stable/c/ffe13302b8fd486f80c98019bdcb7f3e512d0eda	Vuln. Introduced
https://git.kernel.org/stable/c/7a3ff8a2bb2620ba6a806f0967c38be1a8d306d9	Vuln. Introduced
https://git.kernel.org/stable/c/1613195bf31e68b192bc731bea71726773e3482f	Vuln. Introduced
https://git.kernel.org/stable/c/8f82f2e4d9c4966282e494ae67b0bc05a6c2b904	Vuln. Introduced
https://git.kernel.org/stable/c/cdba4301adda7c60a2064bf808e48fccd352aaa9	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/3dd2d99e2352903d0e0b8769e6c9b8293c7454b2	2024-02-23
https://git.kernel.org/stable/c/422d5243b9f780abd3d39da2b746e3915677b07d	2024-02-23
https://git.kernel.org/stable/c/4a98bc739d0753a5810ce5630943cd7614c7717e	2024-02-23
https://git.kernel.org/stable/c/d14b8e2005f36319df9412d42037416d64827f6b	2024-02-23
https://git.kernel.org/stable/c/1f0d7792e9023e8658e901b7b76a555f6aa052ec	2024-02-23
https://git.kernel.org/stable/c/050ad2ca0ac169dd9e552075d2c6af1bbb46534c	2024-02-23
https://git.kernel.org/stable/c/ed5b8b735369b40d6c1f8ef3e62d369f74b4c491	2024-02-23
https://git.kernel.org/stable/c/6ef5d5b92f7117b324efaac72b3db27ae8bb3082	2024-02-11

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.306 < 4.19.307 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.306 < 4.19.307"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.268 < 5.4.269 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.268 < 5.4.269"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.209 < 5.10.210 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.209 < 5.10.210"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.148 < 5.15.149 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.148 < 5.15.149"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.74 < 6.1.79 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.74 < 6.1.79"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6.13 < 6.6.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6.13 < 6.6.18"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7 < 6.7.6 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7 < 6.7.6"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7 < 6.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7 < 6.8"		en		Affected