CVE-2024-46713

Sept. 13, 2024, 4:37 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that event->mmap_mutex is strictly insufficient to serialize the AUX buffer, add a per RB mutex to fully serialize it. Note that in the lock order comment the perf_event::mmap_mutex order was already wrong, that is, it nesting under mmap_lock is not new with this patch.

Product(s) Impacted

Product Versions
Linux kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/2ab9d830262c132ab5db2f571003d80850d56b2a
https://git.kernel.org/stable/c/52d13d224fdf1299c8b642807fa1ea14d693f5ff
https://git.kernel.org/stable/c/7882923f1cb88dc1a17f2bf0c81b1fc80d44db82
https://git.kernel.org/stable/c/9dc7ad2b67772cfb94ceb3b0c9c4023c2463215d
https://git.kernel.org/stable/c/b9b6882e243b653d379abbeaa64a500182aba370
https://git.kernel.org/stable/c/c4b69bee3f4ef76809288fe6827bc14d4ae788ef

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-09-13
CVE-2024-46713

Timeline

Published: Sept. 13, 2024, 3:15 p.m.
Last Modified: Sept. 13, 2024, 4:37 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.