CVE-2024-40956
HIGHLinux Kernel 5.11-5.15.161, 5.16-6.1.95, 6.2-6.6.35, 6.7-6.9.6 - Use-After-Free in DMA Engine IRQ Work List Processing
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list Use list_for_each_entry_safe() to allow iterating through the list and deleting the entry in the iteration process. The descriptor is freed via idxd_desc_complete() and there's a slight chance may cause issue for the list iterator when the descriptor is reused by another thread without it being deleted from the list.
References (6)
Core 6
Core References
Scores
CVSS v3
7.8
EPSS
0.0027
EPSS Percentile
18.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-416
Status
published
Products (18)
linux/Kernel
5.11.0 - 5.15.162linux
linux/Kernel
5.16.0 - 6.1.96linux
linux/Kernel
6.2.0 - 6.6.36linux
linux/Kernel
6.7.0 - 6.9.7linux
Linux/Linux
< 5.11
Linux/Linux
16e19e11228ba660d9e322035635e7dcf160d5c2 - 1b08bf5a17c66ab7dbb628df5344da53c8e7ab33
Linux/Linux
16e19e11228ba660d9e322035635e7dcf160d5c2 - 83163667d881100a485b6c2daa30301b7f68d9b5
Linux/Linux
16e19e11228ba660d9e322035635e7dcf160d5c2 - a14968921486793f2a956086895c3793761309dd
Linux/Linux
16e19e11228ba660d9e322035635e7dcf160d5c2 - e3215deca4520773cd2b155bed164c12365149a7
Linux/Linux
16e19e11228ba660d9e322035635e7dcf160d5c2 - faa35db78b058a2ab6e074ee283f69fa398c36a8
... and 8 more
Published
Jul 12, 2024
Tracked Since
Feb 18, 2026