Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Add outer runtime_pm protection to xe_live_ktest@xe_dma_buf Any kunit doing any memory access should get their own runtime_pm outer references since they don't use the standard driver API entries. In special this dma_buf from the same driver. Found by pre-merge CI on adding WARN calls for unprotected inner callers: <6> [318.639739] # xe_dma_buf_kunit: running xe_test_dmabuf_import_same_driver <4> [318.639957] ------------[ cut here ]------------ <4> [318.639967] xe 0000:4d:00.0: Missing outer runtime PM protection <4> [318.640049] WARNING: CPU: 117 PID: 3832 at drivers/gpu/drm/xe/xe_pm.c:533 xe_pm_runtime_get_noresume+0x48/0x60 [xe]
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.8, < 6.9.9 |
References
- https://git.kernel.org/stable/c/0888d15ea45ba8ef4508edd1123ea5ad95b58994Patch
- https://git.kernel.org/stable/c/f9116f658a6217b101e3b4e89f845775b6fb05d9Patch
- https://git.kernel.org/stable/c/0888d15ea45ba8ef4508edd1123ea5ad95b58994Patch
- https://git.kernel.org/stable/c/f9116f658a6217b101e3b4e89f845775b6fb05d9Patch
FAQ
What is CVE-2024-42146?
CVE-2024-42146 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: drm/xe: Add outer runtime_pm protection to xe_live_ktest@xe_dma_buf Any kunit doing any memory access should get their own runtime...
How severe is CVE-2024-42146?
CVE-2024-42146 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-42146?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.