Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-39484
HistoryJul 05, 2024 - 7:15 a.m.

CVE-2024-39484

2024-07-0507:15:10
CWE-770
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
10
cve-2024-39484
linux kernel
mmc driver
resource leaks
modpost warning

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

mmc: davinci: Don’t strip remove function when driver is builtin

Using __exit for the remove function results in the remove callback being
discarded with CONFIG_MMC_DAVINCI=y. When such a device gets unbound (e.g.
using sysfs or hotplug), the driver is just removed without the cleanup
being performed. This results in resource leaks. Fix it by compiling in the
remove callback unconditionally.

This also fixes a W=1 modpost warning:

WARNING: modpost: drivers/mmc/host/davinci_mmc: section mismatch in
reference: davinci_mmcsd_driver+0x10 (section: .data) ->
davinci_mmcsd_remove (section: .exit.text)

Affected configurations

Nvd
Node
linuxlinux_kernelRange<2.6.33
OR
linuxlinux_kernelRange5.105.10.221
OR
linuxlinux_kernelRange5.155.15.162
OR
linuxlinux_kernelRange6.16.1.95
OR
linuxlinux_kernelRange6.66.6.34
OR
linuxlinux_kernelRange6.96.9.5
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Related

cbl_mariner 2
osv 18
nessus 22
ubuntucve 1
cve 1
debiancve 1
redhatcve 1
cvelist 1
vulnrichment 1
openvas 18
ubuntu 11
photon 2
oraclelinux 1
mageia 2
cbl_mariner
cbl_mariner
CVE-2024-39484 affecting package kernel for versions less than 6.6.35.1-5
2024-07-22 15:42:40
CVE-2024-39484 affecting package kernel for versions less than 5.15.162.2-1
2024-08-05 03:22:58
osv
osv
CVE-2024-39484
2024-07-05 07:15:00
linux, linux-aws, linux-azure, linux-gcp, linux-gke, linux-ibm, linux-lowlatency, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8, linux-oracle, linux-raspi vulnerabilities
2024-08-21 21:08:44
linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-raspi vulnerabilities
2024-08-21 20:37:04
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2024-39484)
2024-08-06 00:00:00
Photon OS 4.0: Linux PHSA-2024-4.0-0655
2024-07-24 00:00:00
Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6975-1)
2024-08-21 00:00:00
ubuntucve
ubuntucve
CVE-2024-39484
2024-07-05 00:00:00
cve
cve
CVE-2024-39484
2024-07-05 07:15:10
debiancve
debiancve
CVE-2024-39484
2024-07-05 07:15:10
redhatcve
redhatcve
CVE-2024-39484
2024-07-05 10:23:22
cvelist
cvelist
CVE-2024-39484 mmc: davinci: Don't strip remove function when driver is builtin
2024-07-05 06:55:11
vulnrichment
vulnrichment
CVE-2024-39484 mmc: davinci: Don't strip remove function when driver is builtin
2024-07-05 06:55:11
openvas
openvas
Ubuntu: Security Advisory (USN-6975-1)
2024-08-22 00:00:00
Ubuntu: Security Advisory (USN-6974-1)
2024-08-22 00:00:00
Ubuntu: Security Advisory (USN-6974-2)
2024-08-26 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-21 00:00:00
Linux kernel (Oracle) vulnerabilities
2024-08-23 00:00:00
Linux kernel vulnerabilities
2024-08-21 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2024-4.0-0655
2024-07-22 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0319
2024-07-17 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-09-12 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

JSON
Related for NVD:CVE-2024-39484
cbl_mariner2osv18nessus22ubuntucve1cve1debiancve1redhatcve1cvelist1vulnrichment1openvas18ubuntu11photon2oraclelinux1mageia2