CVE-2024-26722 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work() There is a path in rt5645_jack_detect_work(), where rt5645->jd_mutex is left locked forever. That may lead to deadlock when rt5645_jack_detect_work() is called for the second time. Found by Linux Verification Center (linuxtesting.org) with SVACE.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

No data.

References

Link	Providers
https://git.kernel.org/stable/c/050ad2ca0ac169dd9e552075d2c6af1bbb46534c
https://git.kernel.org/stable/c/1f0d7792e9023e8658e901b7b76a555f6aa052ec
https://git.kernel.org/stable/c/3dd2d99e2352903d0e0b8769e6c9b8293c7454b2
https://git.kernel.org/stable/c/422d5243b9f780abd3d39da2b746e3915677b07d
https://git.kernel.org/stable/c/4a98bc739d0753a5810ce5630943cd7614c7717e
https://git.kernel.org/stable/c/6ef5d5b92f7117b324efaac72b3db27ae8bb3082
https://git.kernel.org/stable/c/d14b8e2005f36319df9412d42037416d64827f6b
https://git.kernel.org/stable/c/ed5b8b735369b40d6c1f8ef3e62d369f74b4c491
https://lore.kernel.org/linux-cve-announce/2024040345-CVE-2024-26722-4df2@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-26722
https://www.cve.org/CVERecord?id=CVE-2024-26722

History

Tue, 05 Nov 2024 10:45:00 +0000

Type	Values Removed	Values Added
References	https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-04-03T14:55:21.709Z

Updated: 2024-11-05T09:14:32.223Z

Reserved: 2024-02-19T14:20:24.163Z

Link: CVE-2024-26722

Vulnrichment

Updated: 2024-08-02T00:14:12.917Z

NVD

Status : Awaiting Analysis

Published: 2024-04-03T15:15:54.090

Modified: 2024-11-05T10:15:44.310

Link: CVE-2024-26722

Redhat

Severity : Low

Publid Date: 2024-04-03T00:00:00Z

Links: CVE-2024-26722 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object