Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-edma: HDMA: Add sync read before starting the DMA transfer in remote setup The Linked list element and pointer are not stored in the same memory as the HDMA controller register. If the doorbell register is toggled before the full write of the linked list a race condition error will occur. In remote setup we can only use a readl to the memory to assure the full write has occurred.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.5, < 6.6.21 |
References
- https://git.kernel.org/stable/c/17be6f5cb223f22e4733ed8fe8b2247cbb677716Patch
- https://git.kernel.org/stable/c/227ef58a9b0c372efba422e8886a8015a1509ebaPatch
- https://git.kernel.org/stable/c/712a92a48158e02155b4b6b21e03a817f78c9b7ePatch
- https://git.kernel.org/stable/c/17be6f5cb223f22e4733ed8fe8b2247cbb677716Patch
- https://git.kernel.org/stable/c/227ef58a9b0c372efba422e8886a8015a1509ebaPatch
- https://git.kernel.org/stable/c/712a92a48158e02155b4b6b21e03a817f78c9b7ePatch
FAQ
What is CVE-2024-27409?
CVE-2024-27409 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-edma: HDMA: Add sync read before starting the DMA transfer in remote setup The Linked list element and pointer are n...
How severe is CVE-2024-27409?
CVE-2024-27409 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-27409?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.