vulnerability

Red Hat: CVE-2024-26919: kernel: usb: ulpi: Fix debugfs directory leak (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:N/I:N/A:C)	Apr 17, 2024	Jun 6, 2024	Jun 6, 2024

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

Apr 17, 2024

Added

Jun 6, 2024

Modified

Jun 6, 2024

Description

In the Linux kernel, the following vulnerability has been resolved:

usb: ulpi: Fix debugfs directory leak

The ULPI per-device debugfs root is named after the ulpi device's
parent, but ulpi_unregister_interface tries to remove a debugfs
directory named after the ulpi device itself. This results in the
directory sticking around and preventing subsequent (deferred) probes
from succeeding. Change the directory name to match the ulpi device.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

NVD-CVE-2024-26919
REDHAT-RHSA-2024:3618
REDHAT-RHSA-2024:3627

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today