PT-2024-32103 · Linux+7 · Linux Kernel+7
Selvarasu Ganesan
·
Published
2024-08-22
·
Updated
2025-09-29
·
CVE-2024-46675
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue arises from the Linux kernel's USB core accessing an invalid event buffer address during runtime suspend, potentially causing SMMU faults and other memory issues in Exynos platforms. The problem occurs due to a sequence where the USB core may timeout when moving to the halt state after clearing the run/stop bit by software, and the event buffer is cleared regardless of the USB core's status. This can lead to SMMU faults and other memory issues if the USB core tries to access the event buffer address.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu