CVE-2024-27054
Published: May 2, 2024Last modified: May 2, 2024
Description
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix double module refcount decrement Once the discipline is associated with the device, deleting the device takes care of decrementing the module's refcount. Doing it manually on this error path causes refcount to artificially decrease on each error while it should just stay the same.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.89-r0) |
| Stream | linux-lts | Fixed (6.12.41-r0) |
References
- https://git.kernel.org/stable/c/9fe0562179d8fa960afca0eaed6d4ba4122a3cc6
- https://git.kernel.org/stable/c/ad999aa18103fa038787b6a8a55020abcf34df1a
- https://git.kernel.org/stable/c/c3116e62ddeff79cae342147753ce596f01fcf06
- https://git.kernel.org/stable/c/ebc5a3bd79e54f98c885c26f0862a27a02c487c5
- https://git.kernel.org/stable/c/ec09bcab32fc4765e0cc97e1b72cdd067135f37e
- https://git.kernel.org/stable/c/edbdb0d94143db46edd373cc93e433832d29fe19
- https://git.kernel.org/stable/c/fa18aa507ea71d8914b6acb2c94db311c757c650