PT-2024-29239 · Linux+10 · Linux Kernel+10

Ganesh Goudar

·

Published

2024-06-17

·

Updated

2025-09-29

·

CVE-2024-41064

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to incorrect resource locking in the Linux kernel, specifically in the powerpc/eeh module. If a PCI device is removed during eeh pe report edev(), the edev->pdev will change and can cause a crash. To prevent this, the PCI rescan/remove lock should be held while taking a copy of edev->pdev->bus. This can lead to a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-413CWE-667

Related Identifiers

ALSA-2024:7000
ALSA-2025_16880
ALT-PU-2024-10465
ALT-PU-2024-11524
ALT-PU-2024-11855
ALT-PU-2024-11863
ALT-PU-2024-12537
ALT-PU-2024-13121
ALT-PU-2024-13979
ALT-PU-2024-14046
BDU:2025-01574
CESA-2024_7000
CVE-2024-41064
DLA-4008-1
DSA-5747-1
INFSA-2024_7000
MGASA-2024-0277
MGASA-2024-0278
OESA-2024-1960
OESA-2024-1961
OESA-2024-1962
OESA-2024-1964
OPENSUSE-SU-2024_2947-1
RHSA-2024:10942
RHSA-2024:7000
RHSA-2024:8613
RHSA-2024_7000
SUSE-SU-2024:2892-1
SUSE-SU-2024:2894-1
SUSE-SU-2024:2901-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2940-1
SUSE-SU-2024:2947-1
SUSE-SU-2024:3194-1
SUSE-SU-2024:3195-1
SUSE-SU-2024:3383-1
SUSE-SU-2025:20044-1
SUSE-SU-2025:20047-1
USN-7088-1
USN-7088-2
USN-7088-3
USN-7088-4
USN-7088-5
USN-7089-1
USN-7089-2
USN-7089-3
USN-7089-4
USN-7089-5
USN-7089-6
USN-7089-7
USN-7090-1
USN-7095-1
USN-7100-1
USN-7100-2
USN-7119-1
USN-7123-1
USN-7144-1
USN-7156-1
USN-7194-1
USN-7332-1
USN-7332-2
USN-7332-3
USN-7342-1
USN-7344-1
USN-7344-2

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu