U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2024-46716

Change History

New CVE Received from kernel.org 9/18/2024 3:15:03 AM

Action Type Old Value New Value
Added Description

								
							
							
						
In the Linux kernel, the following vulnerability has been resolved:

dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor

Remove list_del call in msgdma_chan_desc_cleanup, this should be the role
of msgdma_free_descriptor. In consequence replace list_add_tail with
list_move_tail in msgdma_free_descriptor.

This fixes the path:
   msgdma_free_chan_resources -> msgdma_free_descriptors ->
   msgdma_free_desc_list -> msgdma_free_descriptor

which does not correctly free the descriptors as first nodes were not
removed from the list.
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/20bf2920a869f9dbda0ef8c94c87d1901a64a716 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/54e4ada1a4206f878e345ae01cf37347d803d1b1 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/a3480e59fdbe5585d2d1eff0bed7671583acf725 [No types assigned]
Added Reference

								
							
							
						
kernel.org https://git.kernel.org/stable/c/db67686676c7becc1910bf1d6d51505876821863 [No types assigned]