CVE-2024-39484 mmc: davinci: Don't strip remove function when driver is builtin

2024-07-0506:55:11

Linux

github.com

linux kernel

vulnerability

resolved

mmc: davinci

fix

resource leaks

modpost

warning

AI Score

6.9

Confidence

Low

EPSS

Percentile

5.1%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

mmc: davinci: Don’t strip remove function when driver is builtin

Using __exit for the remove function results in the remove callback being
discarded with CONFIG_MMC_DAVINCI=y. When such a device gets unbound (e.g.
using sysfs or hotplug), the driver is just removed without the cleanup
being performed. This results in resource leaks. Fix it by compiling in the
remove callback unconditionally.

This also fixes a W=1 modpost warning:

WARNING: modpost: drivers/mmc/host/davinci_mmc: section mismatch in
reference: davinci_mmcsd_driver+0x10 (section: .data) ->
davinci_mmcsd_remove (section: .exit.text)

CNA Affected

[
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "b4cff4549b7a",
        "lessThan": "6ff7cfa02baa",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "b4cff4549b7a",
        "lessThan": "aea35157bb9b",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "b4cff4549b7a",
        "lessThan": "5ee241f72edc",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "b4cff4549b7a",
        "lessThan": "7590da4c04dd",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "b4cff4549b7a",
        "lessThan": "1d5ed0efe51d",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "b4cff4549b7a",
        "lessThan": "55c421b36448",
        "versionType": "git"
      }
    ],
    "programFiles": [
      "drivers/mmc/host/davinci_mmc.c"
    ],
    "defaultStatus": "unaffected"
  },
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "2.6.33"
      },
      {
        "status": "unaffected",
        "version": "0",
        "lessThan": "2.6.33",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "5.10.221",
        "versionType": "custom",
        "lessThanOrEqual": "5.10.*"
      },
      {
        "status": "unaffected",
        "version": "5.15.162",
        "versionType": "custom",
        "lessThanOrEqual": "5.15.*"
      },
      {
        "status": "unaffected",
        "version": "6.1.95",
        "versionType": "custom",
        "lessThanOrEqual": "6.1.*"
      },
      {
        "status": "unaffected",
        "version": "6.6.34",
        "versionType": "custom",
        "lessThanOrEqual": "6.6.*"
      },
      {
        "status": "unaffected",
        "version": "6.9.5",
        "versionType": "custom",
        "lessThanOrEqual": "6.9.*"
      },
      {
        "status": "unaffected",
        "version": "6.10",
        "versionType": "original_commit_for_fix",
        "lessThanOrEqual": "*"
      }
    ],
    "programFiles": [
      "drivers/mmc/host/davinci_mmc.c"
    ],
    "defaultStatus": "affected"
  }
]