CVE-2024-56671

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc6-00077-g2e1b3cc9d7f7

Description A problem in the Linux kernel has been fixed, specifically with the vGPIO driver, which would crash during bootup. The crash was caused by an unauthorized modification of the irq chip.name field where the irq chip struct was initialized as const. This behavior is a consequence of the suboptimal implementation of gpio irq chip set chip(), which should be changed to avoid casting away the const qualifier.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the vGPIO driver crash. As a temporary workaround, consider disabling the gnr gpio probe() function until a patch is available. Restrict access to the irq chip struct to minimize the risk of exploitation. Avoid using the irq chip.name field in the affected kernel versions until the issue is resolved.