PT-2024-9244 · Linux+7 · Linux Kernel+7

Published

2024-06-20

Updated

2025-09-29

CVE-2023-52884

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.37

Description: The issue is related to a missing input core locking mechanism in the Linux kernel's suspend and resume functions, specifically in the cyapa input driver. This vulnerability can cause warnings during system suspend and resume cycles on affected devices, such as Samsung Exynos5250-based Snow Chromebooks. The vulnerability is resolved by adding the missing input core locking to the suspend and resume functions.

Recommendations: To resolve the issue, update the Linux kernel to version 6.6.37 or later.

Exploit

Fix

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALSA-2024:6997

ALSA-2025_16880

BDU:2024-10932

CVE-2023-52884

INFSA-2024_6997

MGASA-2024-0263

MGASA-2024-0266

OPENSUSE-SU-2024_2372-1

OPENSUSE-SU-2024_2394-1

RHSA-2024:6997

RHSA-2024_6997

SUSE-SU-2024:2372-1

SUSE-SU-2024:2394-1

SUSE-SU-2024:2571-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2939-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

USN-6999-1

USN-6999-2

USN-7004-1

USN-7005-1

USN-7005-2

USN-7007-1

USN-7007-2

USN-7007-3

USN-7008-1

USN-7009-1

USN-7009-2

USN-7019-1

USN-7029-1

Affected Products

Almalinux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

PT-2024-9244 · Linux+7 · Linux Kernel+7

CVE-2023-52884

Weakness Enumeration

Related Identifiers

Affected Products

References · 3214