CVE-2024-50292

ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove

In case of error when requesting ctrl_chan DMA channel, ctrl_chan is not
null. So the release of the dma channel leads to the following issue:
[ 4.879000] st,stm32-spdifrx 500d0000.audio-controller:
dma_request_slave_channel error -19
[ 4.888975] Unable to handle kernel NULL pointer dereference
at virtual address 000000000000003d
[...]
[ 5.096577] Call trace:
[ 5.099099] dma_release_channel+0x24/0x100
[ 5.103235] stm32_spdifrx_remove+0x24/0x60 [snd_soc_stm32_spdifrx]
[ 5.109494] stm32_spdifrx_probe+0x320/0x4c4 [snd_soc_stm32_spdifrx]

To avoid this issue, release channel only if the pointer is valid.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-10-21 CVE Reserved
2024-11-19 CVE Published
2024-11-19 CVE Updated
2024-11-19 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/794df9448edb55978e50372f083aeedade1b2844	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/3a977b554f668382dfba31fd62e4cce4fe5643db	2024-11-17
https://git.kernel.org/stable/c/0d75f887aabd80cf37ea48d28f159afa7850ea28	2024-11-14
https://git.kernel.org/stable/c/4f1d74f74752eab8af6b8b28797dc6490d57374c	2024-11-14
https://git.kernel.org/stable/c/23bdbd1ef3e063e03d3c50c15a591b005ebbae39	2024-11-14
https://git.kernel.org/stable/c/22ae9321054cf7f36c537702af133659f51a0b88	2024-11-14
https://git.kernel.org/stable/c/9bb4af400c386374ab1047df44c508512c08c31f	2024-11-05

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 5.10.230 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 5.10.230"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 5.15.172 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 5.15.172"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.1.117 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.1.117"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.6.61 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.6.61"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.11.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.11.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.7 < 6.12 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.7 < 6.12"		en		Affected