CVE-2024-56739
- Source
- https://cve.org/CVERecord?id=CVE-2024-56739
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56739.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-56739
- Downstream
- Related
- Published
- 2024-12-29T11:30:08.512Z
- Modified
- 2026-06-18T03:56:19.795523675Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
rtc: check if _rtcreadtime was successful in rtctimerdowork()
If the _rtcreadtime call fails,, the struct rtctime tm; may contain uninitialized data, or an illegal date/time read from the RTC hardware.
When calling rtctmtoktime later, the result may be a very large value (possibly KTIMEMAX). If there are periodic timers in rtc->timerqueue, they will continually expire, may causing kernel softlockup.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56739.json" }- References
-
- https://git.kernel.org/stable/c/0d68e8514d9040108ff7d1b37ca71096674b6efe
- https://git.kernel.org/stable/c/246f621d363988e7040f4546d20203dc713fa3e1
- https://git.kernel.org/stable/c/39ad0a1ae17b54509cd9e93dcd8cec16e7c12d3f
- https://git.kernel.org/stable/c/44b3257ff705d63d5f00ef8ed314a0eeb7ec37f2
- https://git.kernel.org/stable/c/a1f0b4af90cc18b10261ecde56c6a56b22c75bd1
- https://git.kernel.org/stable/c/dd4b1cbcc916fad5d10c2662b62def9f05e453d4
- https://git.kernel.org/stable/c/e77bce0a8c3989b4173c36f4195122bca8f4a3e1
- https://git.kernel.org/stable/c/e8ba8a2bc4f60a1065f23d6a0e7cbea945a0f40d
- https://git.kernel.org/stable/c/fde56535505dde3336df438e949ef4742b6d6d6e
- https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56739.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-56739
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced6610e0893b8bc6f59b14fed7f089c5997f035f88Fixed39ad0a1ae17b54509cd9e93dcd8cec16e7c12d3fFixed44b3257ff705d63d5f00ef8ed314a0eeb7ec37f2Fixed0d68e8514d9040108ff7d1b37ca71096674b6efeFixed246f621d363988e7040f4546d20203dc713fa3e1Fixedfde56535505dde3336df438e949ef4742b6d6d6eFixeddd4b1cbcc916fad5d10c2662b62def9f05e453d4Fixeda1f0b4af90cc18b10261ecde56c6a56b22c75bd1Fixede77bce0a8c3989b4173c36f4195122bca8f4a3e1Fixede8ba8a2bc4f60a1065f23d6a0e7cbea945a0f40d
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.38Fixed4.19.325
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.287
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.231
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.174
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.120
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.64
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.11.11
- Type
- ECOSYSTEM
- Events
-
Introduced6.12.0Fixed6.12.2