CVE-2024-57949

Advisory lineage Upstream: 0 Downstream: 13

Downstream

DEBIAN-CVE-2024-57949 DLA-4076-1 UBUNTU-CVE-2024-57949 USN-7445-1 USN-7448-1 USN-7595-1

Modified

Published: 09 Feb 2025, 11:37

Last modified:23 May 2026, 15:56

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (cve.org)

EPSS Score

<0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

09 Feb 2025, 11:37

Published

Vulnerability first disclosed

23 May 2026, 15:56

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Don't enable interrupts in its_irq_set_vcpu_affinity() The following call-chain leads to enabling interrupts in a nested interrupt disabled section: irq_set_vcpu_affinity() irq_get_desc_lock() raw_spin_lock_irqsave() <--- Disable interrupts its_irq_set_vcpu_affinity() guard(raw_spinlock_irq) <--- Enables interrupts when leaving the guard() irq_put_desc_unlock() <--- Warns because interrupts are enabled This was broken in commit b97e8a2f7130, which replaced the original raw_spin_[un]lock() pair with guard(raw_spinlock_irq). Fix the issue by using guard(raw_spinlock). [ tglx: Massaged change log ]

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 0%

Techniques & Countermeasures

CWE-667•Improper Locking
The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

Affected Systems

linux•linux
≥ 2458f2362f695584bd824c922caa07ffc4fe0d5c, < d7b0e89610dd45ac6cf0d6f99bfa9ccc787db344 | ≥ 5c0fb9cb404a2efbbc319ff9d1b877cf4e47e950, < 6c84ff2e788fce0099ee3e71a3ed258b1ca1a223 | ≥ b97e8a2f7130a4b30d1502003095833d16c028b3, < 93955a7788121ab5a0f7f27e988b2ed1135a4866 | ≥ b97e8a2f7130a4b30d1502003095833d16c028b3, < 35cb2c6ce7da545f3b5cb1e6473ad7c3a6f08310 | c11039edbabdbccf0728844f1002d750d06f9eff | ≥ 6.1.95, < 6.1.127 | ≥ 6.6.35, < 6.6.74 | ≥ 6.9.6, < 6.10 | 6.10
linux•linux_kernel
≥ 6.1.95, < 6.1.127 | ≥ 6.6.35, < 6.6.74 | ≥ 6.9.6, < 6.12.11 | 6.13:rc1 | 6.13:rc2 | 6.13:rc3 | 6.13:rc4 | 6.13:rc5 | 6.13:rc6 | 6.13:rc7