Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: Fix debugfs directory leak The ULPI per-device debugfs root is named after the ulpi device's parent, but ulpi_unregister_interface tries to remove a debugfs directory named after the ulpi device itself. This results in the directory sticking around and preventing subsequent (deferred) probes from succeeding. Change the directory name to match the ulpi device.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.18, < 6.1.79 |
References
- https://git.kernel.org/stable/c/330d22aba17a4d30a56f007d0f51291d7e00862bPatch
- https://git.kernel.org/stable/c/33713945cc92ea9c4a1a9479d5c1b7acb7fc4df3Patch
- https://git.kernel.org/stable/c/3caf2b2ad7334ef35f55b95f3e1b138c6f77b368Patch
- https://git.kernel.org/stable/c/d31b886ed6a5095214062ee4fb55037eb930adb6Patch
- https://git.kernel.org/stable/c/330d22aba17a4d30a56f007d0f51291d7e00862bPatch
- https://git.kernel.org/stable/c/33713945cc92ea9c4a1a9479d5c1b7acb7fc4df3Patch
- https://git.kernel.org/stable/c/3caf2b2ad7334ef35f55b95f3e1b138c6f77b368Patch
- https://git.kernel.org/stable/c/d31b886ed6a5095214062ee4fb55037eb930adb6Patch
FAQ
What is CVE-2024-26919?
CVE-2024-26919 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: Fix debugfs directory leak The ULPI per-device debugfs root is named after the ulpi device's parent, but ulpi_unregiste...
How severe is CVE-2024-26919?
CVE-2024-26919 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-26919?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.