CVE-2024-26876

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-26876

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26876.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-26876

Downstream

AZL-57725

BELL-CVE-2024-26876

DEBIAN-CVE-2024-26876

ECHO-02e5-19b9-042c

OESA-2024-1617

OESA-2024-1618

ROOT-OS-DEBIAN-11-CVE-2024-26876

ROOT-OS-DEBIAN-12-CVE-2024-26876

ROOT-OS-UBUNTU-2204-CVE-2024-26876

SUSE-SU-2024:1643-1

SUSE-SU-2024:1644-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2184-1

SUSE-SU-2024:2190-1

UBUNTU-CVE-2024-26876

Related

Published

2024-04-17T10:27:34.553Z

Modified

2026-05-28T03:54:17.462775897Z

Summary

drm/bridge: adv7511: fix crash on irq during probe

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/bridge: adv7511: fix crash on irq during probe

Moved IRQ registration down to end of adv7511_probe().

If an IRQ already is pending during adv7511probe (before adv7511cecinit) then cecreceivedmsgts could crash using uninitialized data:

Unable to handle kernel read from unreadable memory at virtual address 00000000000003d5
Internal error: Oops: 96000004 [#1] PREEMPT_RT SMP
Call trace:
 cec_received_msg_ts+0x48/0x990 [cec]
 adv7511_cec_irq_process+0x1cc/0x308 [adv7511]
 adv7511_irq_process+0xd8/0x120 [adv7511]
 adv7511_irq_handler+0x1c/0x30 [adv7511]
 irq_thread_fn+0x30/0xa0
 irq_thread+0x14c/0x238
 kthread+0x190/0x1a8

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26876.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

3b1b975003e4a3da4b93ab032487a3ae4afca7b5

Fixed

50f4b57e9a9db4ede9294f39b9e75b5f26bae9b7

Fixed

955c1252930677762e0db2b6b9e36938c887445c

Fixed

28a94271bd50e4cf498df0381f776f8ea40a289e

Fixed

aeedaee5ef5468caf59e2bb1265c2116e0c9a924

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26876.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.15.0

Fixed

6.6.55

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.7.11

Type: ECOSYSTEM
Events: Introduced

6.8.0

Fixed

6.8.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26876.json"