CVE-2024-27054

s390/dasd: fix double module refcount decrement

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

s390/dasd: fix double module refcount decrement

Once the discipline is associated with the device, deleting the device
takes care of decrementing the module's refcount. Doing it manually on
this error path causes refcount to artificially decrease on each error
while it should just stay the same.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: s390/dasd: corrige la disminución del doble recuento del módulo Una vez que la disciplina está asociada con el dispositivo, eliminar el dispositivo se encarga de disminuir el recuento del módulo. Hacerlo manualmente en esta ruta de error hace que el recuento disminuya artificialmente en cada error, mientras que debería permanecer igual.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-05-01 CVE Published
2024-05-02 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/c020d722b110a44c613ef71e657e6dd4116e09d9	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/edbdb0d94143db46edd373cc93e433832d29fe19	2024-03-26
https://git.kernel.org/stable/c/ad999aa18103fa038787b6a8a55020abcf34df1a	2024-03-26
https://git.kernel.org/stable/c/ec09bcab32fc4765e0cc97e1b72cdd067135f37e	2024-03-26
https://git.kernel.org/stable/c/fa18aa507ea71d8914b6acb2c94db311c757c650	2024-03-26
https://git.kernel.org/stable/c/ebc5a3bd79e54f98c885c26f0862a27a02c487c5	2024-03-26
https://git.kernel.org/stable/c/c3116e62ddeff79cae342147753ce596f01fcf06	2024-02-09

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.9 < 5.15.153 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9 < 5.15.153"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.9 < 6.1.83 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9 < 6.1.83"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.9 < 6.6.23 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9 < 6.6.23"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.9 < 6.7.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9 < 6.7.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.9 < 6.8.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9 < 6.8.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.9 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9 < 6.9"		en		Affected