CVE-2024-56622

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74

Description The issue is related to a division by zero error in the Linux kernel when monitoring is not enabled. This error occurs in the scsi: ufs: core: sysfs component. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. The technical details of the issue include the prevention of a division by 0 when monitoring is not enabled, specifically in the sysfs component of the scsi: ufs: core.

Recommendations For Linux kernel versions prior to 6.6.74, update to version 6.6.74 or later to resolve the issue. As a temporary workaround, consider disabling the monitoring feature in the scsi: ufs: core: sysfs component until a patch is available. Restrict access to the vulnerable sysfs component to minimize the risk of exploitation. Avoid using the affected scsi: ufs: core component in critical systems until the issue is resolved.