CVE-2024-39292
Published: Jun 24, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: um: Add winch to winch_handlers before registering winch IRQ Registering a winch IRQ is racy, an interrupt may occur before the winch is added to the winch_handlers list. If that happens, register_winch_irq() adds to that list a winch that is scheduled to be (or has already been) freed, causing a panic later in winch_cleanup(). Avoid the race by adding the winch to the winch_handlers list before registering the IRQ, and rolling back if um_request_irq() fails.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 42a359e31a0e438b5b978a8f0fecdbd3c86bb033 - < 66ea9a7c6824821476914bed21a476cd20094f33affected 42a359e31a0e438b5b978a8f0fecdbd3c86bb033 - < dc1ff95602ee908fcd7d8acee7a0dadb61b1a0c0affected 42a359e31a0e438b5b978a8f0fecdbd3c86bb033 - < 351d1a64544944b44732f6a64ed65573b00b9e14affected 42a359e31a0e438b5b978a8f0fecdbd3c86bb033 - < 31960d991e43c8d6dc07245f19fc13398e90ead2affected 42a359e31a0e438b5b978a8f0fecdbd3c86bb033 - < 0c02d425a2fbe52643a5859a779db0329e7dddd4+3 more versions |
Linux | Linux | affected 2.6.23unaffected 0 - < 2.6.23unaffected 4.19.316 - <= 4.19.*unaffected 5.4.278 - <= 5.4.*unaffected 5.10.219 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now