Home

Description

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: Add cancel_work_sync before module remove If we remove the module which will call mpc52xx_spi_remove it will free 'ms' through spi_unregister_controller. while the work ms->work will be used. The sequence of operations that may lead to a UAF bug. Fix it by ensuring that the work is canceled before proceeding with the cleanup in mpc52xx_spi_remove.

PUBLISHED Reserved 2025-01-09 | Published 2025-01-11 | Updated 2025-11-03 | Assigner Linux

Product status

Default status
unaffected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before d0cde3911cf24e1bcdd4caa1d1b9ef57589db5a1
affected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before e0c6ce8424095c2da32a063d3fc027494c689817
affected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before cd5106c77d6d6828aa82449f01f4eb436d602a21
affected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before 373d55a47dc662e5e30d12ad5d334312f757c1f1
affected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before f65d85bc1ffd8a2c194bb2cd65e35ed3648ddd59
affected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before 90b72189de2cddacb26250579da0510b29a8b82b
affected

ca632f556697d45d67ed5cada7cedf3ddfe0db4b (git) before 984836621aad98802d92c4a3047114cf518074c8
affected

Default status
affected

3.1
affected

Any version before 3.1
unaffected

5.4.287 (semver)
unaffected

5.10.231 (semver)
unaffected

5.15.174 (semver)
unaffected

6.1.120 (semver)
unaffected

6.6.66 (semver)
unaffected

6.12.5 (semver)
unaffected

6.13 (original_commit_for_fix)
unaffected

References

lists.debian.org/debian-lts-announce/2025/03/msg00001.html

git.kernel.org/...c/d0cde3911cf24e1bcdd4caa1d1b9ef57589db5a1

git.kernel.org/...c/e0c6ce8424095c2da32a063d3fc027494c689817

git.kernel.org/...c/cd5106c77d6d6828aa82449f01f4eb436d602a21

git.kernel.org/...c/373d55a47dc662e5e30d12ad5d334312f757c1f1

git.kernel.org/...c/f65d85bc1ffd8a2c194bb2cd65e35ed3648ddd59

git.kernel.org/...c/90b72189de2cddacb26250579da0510b29a8b82b

git.kernel.org/...c/984836621aad98802d92c4a3047114cf518074c8

cve.org (CVE-2024-50051)

nvd.nist.gov (CVE-2024-50051)

Download JSON