CVE-2024-43830

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue is related to the Linux kernel, where a vulnerability has been resolved by unregistering sysfs attributes before calling deactivate(). Triggers with specific sysfs attributes store related data in trigger-data allocated by the activate() callback and freed by the deactivate() callback. Calling device remove groups() after deactivate() leaves a window where sysfs attributes show/store functions could be called after deactivation and operate on the just freed trigger-data. Moving the device remove groups() call to before deactivate() closes this race window and makes the deactivation path properly do things in reverse order of the activation path.

Recommendations To resolve the issue, update to Linux kernel version 6.6.50 or later. As a temporary workaround, consider restricting access to the vulnerable device remove groups() function until a patch is available.