IM
IronMonkey Threat Research

CVE-2024-58086 MEDIUM

Published: 2025-03-06 | Last Modified: 2026-07-14 | Status: Modified

Description

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Stop active perfmon if it is being destroyed If the active performance monitor (`v3d->active_perfmon`) is being destroyed, stop it first. Currently, the active perfmon is not stopped during destruction, leaving the `v3d->active_perfmon` pointer stale. This can lead to undefined behavior and instability. This patch ensures that the active perfmon is stopped before being destroyed, aligning with the behavior introduced in commit 7d1fd3638ee3 ("drm/v3d: Stop the active perfmon before being destroyed").

Additional Descriptions (1)

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/v3d: Detener el monitor de rendimiento activo si se está destruyendo Si se está destruyendo el monitor de rendimiento activo (`v3d->active_perfmon`), deténgalo primero. Actualmente, el monitor de rendimiento activo no se detiene durante la destrucción, lo que deja obsoleto el puntero `v3d->active_perfmon`. Esto puede provocar un comportamiento indefinido e inestabilidad. Este parche garantiza que el monitor de rendimiento activo se detenga antes de destruirse, en consonancia con el comportamiento introducido en el commit 7d1fd3638ee3 ("drm/v3d: Detener el monitor de rendimiento activo antes de destruirse").

CVSS Metrics

Base Score: 5.5 (MEDIUM)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack VectorLOCAL
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactNONE
Integrity ImpactNONE
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 1.8

Impact Score: 3.6

Weaknesses

Source Type Description
[email protected] Primary
en NVD-CWE-Other

Affected Products

Vendor Product Version Update Type
linux linux_kernel * <built-in method update of dict object at 0x702bddbb0800> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702b83bbadc0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd672a80> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd670740> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bddbb2800> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

References

Notification
Message here