VDB

CISA-2024-46868

CISA-2024-46868 PUBLISHED

Reported by Linux · Published September 27, 2024

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: Fix deadlock in qcuefi_acquire() If the __qcuefi pointer is not set, then in the original code, we would hold onto the lock. That means that if we tried to set it later, then it would cause a deadlock. Drop the lock on the error path. That's what all the callers are expecting.

Affected Products

VendorProductVersions
LinuxLinux759e7a2b62eb3ef3c93ffeb5cca788a09627d7d9, 759e7a2b62eb3ef3c93ffeb5cca788a09627d7d9
LinuxLinux6.7, 0, 6.10.11
linuxlinux_kernel6.7, 6.7, 6.7
LinuxLinux759e7a2b62eb3ef3c93ffeb5cca788a09627d7d9, 6.7, 6.10.11

Timeline

  • Sep 27, 2024 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›