PT-2025-8826 · Linux+4 · Linux Kernel+4

Genes Lists

·

Published

2024-12-19

·

Updated

2025-11-11

·

CVE-2024-58004

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability in the Linux kernel has been resolved, related to the intel/ipu6 media component. The issue occurs when a CPU latency QOS request is not removed on error, leading to list corruption. This corruption can cause warnings and errors, including list add corruption and CPU warnings. The vulnerability is associated with the cpu latency qos update request function and the pm qos update target function. The estimated number of potentially affected devices worldwide is not available.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-401

Related Identifiers

ALSA-2025:20095
BDU:2025-12049
CVE-2024-58004
RHSA-2025:20095
SUSE-SU-2025:02254-1
SUSE-SU-2025:02307-1
SUSE-SU-2025:02333-1
SUSE-SU-2025_02254-1
SUSE-SU-2025_02307-1
SUSE-SU-2025_02333-1
USN-7521-1
USN-7521-2
USN-7521-3

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Suse
Ubuntu