Wind River Support Network

HomeDefectsLIN1021-12896
Acknowledged

LIN1021-12896 : Security Advisory - linux - CVE-2024-56691

Created: Dec 29, 2024    Updated: Jan 20, 2025
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device

While design wise the idea of converting the driver to use
the hierarchy of the IRQ chips is correct, the implementation
has (inherited) flaws. This was unveiled when platform_get_irq()
had started WARN() on IRQ 0 that is supposed to be a Linux
IRQ number (also known as vIRQ).

Rework the driver to respect IRQ domain when creating each MFD
device separately, as the domain is not the same for all of them.

CREATE(Triage):(User=admin) CVE-2024-56691 (https://nvd.nist.gov/vuln/detail/CVE-2024-56691)

CVEs


Live chat
Online