CVE-2024-53134

MEDIUM5.5

pmdomain: imx93-blk-ctrl: correct remove path

Published Dec 4, 2024

Modified 3 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

pmdomain: imx93-blk-ctrl: correct remove path

The check condition should be 'i < bc->onecell_data.num_domains', not 'bc->onecell_data.num_domains' which will make the look never finish and cause kernel panic.

Also disable runtime to address "imx93-blk-ctrl 4ac10000.system-controller: Unbalanced pm_runtime_enable!"

References

WEBhttps://git.kernel.org/stable/c/201fb9e164a1e4c5937de2cf58bcb0327c08664f WEBhttps://git.kernel.org/stable/c/8fc228ab5d38a026eae7183a5f74a4fac43d9b6a WEBhttps://git.kernel.org/stable/c/f7c7c5aa556378a2c8da72c1f7f238b6648f95fb ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2024-53134

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedDec 4, 2024

ModifiedOct 1, 2025