CVE-2024-26977

Опубликовано: 01 мая 2024

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved: pci_iounmap(): Fix MMIO mapping leak The #ifdef ARCH_HAS_GENERIC_IOPORT_MAP accidentally also guards iounmap(), which means MMIO mappings are leaked. Move the guard so we call iounmap() for MMIO mappings.

A vulnerability was found in the pci_iounmap() function in the Linux Kernel, where a lack of proper checks can result in memory leakage. This occurs due to the #ifdef ARCH_HAS_GENERIC_IOPORT_MAP macro which also guards the iounmap() function, causing MMIO mappings to leak. This issue can lead to resource exhaustion over time.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2278348kernel: pci_iounmap(): Fix MMIO mapping leak

EPSS

Процентиль: 0%

0.00008

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2024-26977

CVSS3: 5.5

ubuntu

больше 1 года назад

CVE-2024-26977

CVSS3: 5.5

nvd

больше 1 года назад

CVE-2024-26977

CVSS3: 5.5

msrc

около 1 года назад

Описание отсутствует

CVE-2024-26977

CVSS3: 5.5

debian

больше 1 года назад

In the Linux kernel, the following vulnerability has been resolved: p ...

GHSA-vjm5-8qhg-f872

CVSS3: 5.5

github

больше 1 года назад

EPSS

Процентиль: 0%

0.00008

Низкий

5.5 Medium

CVSS3