CVE-2024-35990
Detail
Modified After Enrichment
This CVE record has been updated after NVD enrichment efforts were completed. Enrichment data supplied by the NVD may require amendment due to these changes.
Description
In the Linux kernel, the following vulnerability has been resolved:
dma: xilinx_dpdma: Fix locking
There are several places where either chan->lock or chan->vchan.lock was
not held. Add appropriate locking. This fixes lockdep warnings like
[ 31.077578] ------------[ cut here ]------------
[ 31.077831] WARNING: CPU: 2 PID: 40 at drivers/dma/xilinx/xilinx_dpdma.c:834 xilinx_dpdma_chan_queue_transfer+0x274/0x5e0
[ 31.077953] Modules linked in:
[ 31.078019] CPU: 2 PID: 40 Comm: kworker/u12:1 Not tainted 6.6.20+ #98
[ 31.078102] Hardware name: xlnx,zynqmp (DT)
[ 31.078169] Workqueue: events_unbound deferred_probe_work_func
[ 31.078272] pstate: 600000c5 (nZCv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[ 31.078377] pc : xilinx_dpdma_chan_queue_transfer+0x274/0x5e0
[ 31.078473] lr : xilinx_dpdma_chan_queue_transfer+0x270/0x5e0
[ 31.078550] sp : ffffffc083bb2e10
[ 31.078590] x29: ffffffc083bb2e10 x28: 0000000000000000 x27: ffffff880165a168
[ 31.078754] x26: ffffff880164e920 x25: ffffff880164eab8 x24: ffffff880164d480
[ 31.078920] x23: ffffff880165a148 x22: ffffff880164e988 x21: 0000000000000000
[ 31.079132] x20: ffffffc082aa3000 x19: ffffff880164e880 x18: 0000000000000000
[ 31.079295] x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000
[ 31.079453] x14: 0000000000000000 x13: ffffff8802263dc0 x12: 0000000000000001
[ 31.079613] x11: 0001ffc083bb2e34 x10: 0001ff880164e98f x9 : 0001ffc082aa3def
[ 31.079824] x8 : 0001ffc082aa3dec x7 : 0000000000000000 x6 : 0000000000000516
[ 31.079982] x5 : ffffffc7f8d43000 x4 : ffffff88003c9c40 x3 : ffffffffffffffff
[ 31.080147] x2 : ffffffc7f8d43000 x1 : 00000000000000c0 x0 : 0000000000000000
[ 31.080307] Call trace:
[ 31.080340] xilinx_dpdma_chan_queue_transfer+0x274/0x5e0
[ 31.080518] xilinx_dpdma_issue_pending+0x11c/0x120
[ 31.080595] zynqmp_disp_layer_update+0x180/0x3ac
[ 31.080712] zynqmp_dpsub_plane_atomic_update+0x11c/0x21c
[ 31.080825] drm_atomic_helper_commit_planes+0x20c/0x684
[ 31.080951] drm_atomic_helper_commit_tail+0x5c/0xb0
[ 31.081139] commit_tail+0x234/0x294
[ 31.081246] drm_atomic_helper_commit+0x1f8/0x210
[ 31.081363] drm_atomic_commit+0x100/0x140
[ 31.081477] drm_client_modeset_commit_atomic+0x318/0x384
[ 31.081634] drm_client_modeset_commit_locked+0x8c/0x24c
[ 31.081725] drm_client_modeset_commit+0x34/0x5c
[ 31.081812] __drm_fb_helper_restore_fbdev_mode_unlocked+0x104/0x168
[ 31.081899] drm_fb_helper_set_par+0x50/0x70
[ 31.081971] fbcon_init+0x538/0xc48
[ 31.082047] visual_init+0x16c/0x23c
[ 31.082207] do_bind_con_driver.isra.0+0x2d0/0x634
[ 31.082320] do_take_over_console+0x24c/0x33c
[ 31.082429] do_fbcon_takeover+0xbc/0x1b0
[ 31.082503] fbcon_fb_registered+0x2d0/0x34c
[ 31.082663] register_framebuffer+0x27c/0x38c
[ 31.082767] __drm_fb_helper_initial_config_and_unlock+0x5c0/0x91c
[ 31.082939] drm_fb_helper_initial_config+0x50/0x74
[ 31.083012] drm_fbdev_dma_client_hotplug+0xb8/0x108
[ 31.083115] drm_client_register+0xa0/0xf4
[ 31.083195] drm_fbdev_dma_setup+0xb0/0x1cc
[ 31.083293] zynqmp_dpsub_drm_init+0x45c/0x4e0
[ 31.083431] zynqmp_dpsub_probe+0x444/0x5e0
[ 31.083616] platform_probe+0x8c/0x13c
[ 31.083713] really_probe+0x258/0x59c
[ 31.083793] __driver_probe_device+0xc4/0x224
[ 31.083878] driver_probe_device+0x70/0x1c0
[ 31.083961] __device_attach_driver+0x108/0x1e0
[ 31.084052] bus_for_each_drv+0x9c/0x100
[ 31.084125] __device_attach+0x100/0x298
[ 31.084207] device_initial_probe+0x14/0x20
[ 31.084292] bus_probe_device+0xd8/0xdc
[ 31.084368] deferred_probe_work_func+0x11c/0x180
[ 31.084451] process_one_work+0x3ac/0x988
[ 31.084643] worker_thread+0x398/0x694
[ 31.084752] kthread+0x1bc/0x1c0
[ 31.084848] ret_from_fork+0x10/0x20
[ 31.084932] irq event stamp: 64549
[ 31.084970] hardirqs last enabled at (64548): [<ffffffc081adf35c>] _raw_spin_unlock_irqrestore+0x80/0x90
[ 31.085157]
---truncated---
Metrics
CVSS Version 4.0
CVSS Version 3.x
CVSS Version 2.0
NVD enrichment efforts reference publicly available information to associate
vector strings. CVSS information contributed by other sources is also
displayed.
CVSS 4.0 Severity and Vector Strings:
NVD assessment
not yet provided.
CVSS 3.x Severity and Vector Strings:
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS 2.0 Severity and Vector Strings:
NVD assessment
not yet provided.
References to Advisories, Solutions, and Tools
By selecting these links, you will be leaving NIST webspace.
We have provided these links to other web sites because they
may have information that would be of interest to you. No
inferences should be drawn on account of other sites being
referenced, or not, from this page. There may be other web
sites that are more appropriate for your purpose. NIST does
not necessarily endorse the views expressed, or concur with
the facts presented on these sites. Further, NIST does not
endorse any commercial products that may be mentioned on
these sites. Please address comments about this page to [email protected] .
Weakness Enumeration
CWE-ID
CWE Name
Source
CWE-667
Improper Locking
NIST
Change History
10 change records found show changes
CVE Modified by siemens-SADP
6/17/2026 3:35:53 AM
Action
Type
Old Value
New Value
Added
Affected
[{"vendor":"Siemens","product":"RUGGEDCOM RST2428P","defaultStatus":"unknown","versions":[{"version":"0","lessThan":"V3.1","versionType":"custom","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family","defaultStatus":"unknown","versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"unaffected"}]},{"vendor":"Siemens","product":"SCALANCE XCM-/XRM-/XCH-/XRH-300 family","defaultStatus":"unknown","versions":[{"version":"0","lessThan":"V3.1","versionType":"custom","status":"affected"}]},{"vendor":"Siemens","product":"SIMATIC S7-1500 TM MFP - GNU/Linux subsystem","defaultStatus":"unknown","versions":[{"version":"0","lessThan":"*","versionType":"custom","status":"affected"}]}]
CVE Modified by CISA-ADP
6/17/2026 3:35:53 AM
Action
Type
Old Value
New Value
Added
SSVC
{"timestamp":"2024-06-18T14:42:31.810522Z","id":"CVE-2024-35990","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}
CVE Modified by kernel.org
6/17/2026 3:35:53 AM
Action
Type
Old Value
New Value
Added
Affected
[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/dma/xilinx/xilinx_dpdma.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"7cbb0c63de3fc218fd06ecfedb477772a4d12f76","lessThan":"fcdd5bb4a8c81c64c1334d7e0aba41a8829a24de","versionType":"git","status":"affected"},{"version":"7cbb0c63de3fc218fd06ecfedb477772a4d12f76","lessThan":"0ccac964520a6f19e355652c8ca38af2a7f27076","versionType":"git","status":"affected"},{"version":"7cbb0c63de3fc218fd06ecfedb477772a4d12f76","lessThan":"8bf574183282d219cfa991f7df37aad491d74c11","versionType":"git","status":"affected"},{"version":"7cbb0c63de3fc218fd06ecfedb477772a4d12f76","lessThan":"8e3c94767cad5150198e4337c8b91f3bb068e14b","versionType":"git","status":"affected"},{"version":"7cbb0c63de3fc218fd06ecfedb477772a4d12f76","lessThan":"c660be571609e03e7d5972343536a736fcb31557","versionType":"git","status":"affected"},{"version":"7cbb0c63de3fc218fd06ecfedb477772a4d12f76","lessThan":"244296cc3a155199a8b080d19e645d7d49081a38","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/dma/xilinx/xilinx_dpdma.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"5.9","status":"affected"},{"version":"0","lessThan":"5.9","versionType":"semver","status":"unaffected"},{"version":"5.10.216","lessThanOrEqual":"5.10.*","versionType":"semver","status":"unaffected"},{"version":"5.15.158","lessThanOrEqual":"5.15.*","versionType":"semver","status":"unaffected"},{"version":"6.1.90","lessThanOrEqual":"6.1.*","versionType":"semver","status":"unaffected"},{"version":"6.6.30","lessThanOrEqual":"6.6.*","versionType":"semver","status":"unaffected"},{"version":"6.8.9","lessThanOrEqual":"6.8.*","versionType":"semver","status":"unaffected"},{"version":"6.9","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]
CVE Modified by siemens-SADP
5/12/2026 8:16:46 AM
Action
Type
Old Value
New Value
Added
Reference
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
Added
Reference
https://cert-portal.siemens.com/productcert/html/ssa-613116.html
CVE Modified by CVE
11/21/2024 4:21:22 AM
Action
Type
Old Value
New Value
Added
Reference
https://git.kernel.org/stable/c/0ccac964520a6f19e355652c8ca38af2a7f27076
Added
Reference
https://git.kernel.org/stable/c/244296cc3a155199a8b080d19e645d7d49081a38
Added
Reference
https://git.kernel.org/stable/c/8bf574183282d219cfa991f7df37aad491d74c11
Added
Reference
https://git.kernel.org/stable/c/8e3c94767cad5150198e4337c8b91f3bb068e14b
Added
Reference
https://git.kernel.org/stable/c/c660be571609e03e7d5972343536a736fcb31557
Added
Reference
https://git.kernel.org/stable/c/fcdd5bb4a8c81c64c1334d7e0aba41a8829a24de
Added
Reference
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
CVE Modified by kernel.org
11/05/2024 5:17:01 AM
Action
Type
Old Value
New Value
Removed
Reference
kernel.org https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
CVE Modified by kernel.org
6/25/2024 6:15:34 PM
Action
Type
Old Value
New Value
Added
Reference
kernel.org https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html [No types assigned]
CVE Modified by kernel.org
5/29/2024 2:18:28 AM
Action
Type
Old Value
New Value
Initial Analysis by NIST
5/23/2024 5:05:01 PM
Action
Type
Old Value
New Value
Added
CVSS V3.1
NIST AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added
CWE
NIST CWE-667
Added
CPE Configuration
OR
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.9 up to (excluding) 5.10.216
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.11 up to (excluding) 5.15.158
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.16 up to (excluding) 6.1.90
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.2 up to (excluding) 6.6.30
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.7 up to (excluding) 6.8.9
Changed
Reference Type
https://git.kernel.org/stable/c/0ccac964520a6f19e355652c8ca38af2a7f27076 No Types Assigned
https://git.kernel.org/stable/c/0ccac964520a6f19e355652c8ca38af2a7f27076 Patch
Changed
Reference Type
https://git.kernel.org/stable/c/244296cc3a155199a8b080d19e645d7d49081a38 No Types Assigned
https://git.kernel.org/stable/c/244296cc3a155199a8b080d19e645d7d49081a38 Patch
Changed
Reference Type
https://git.kernel.org/stable/c/8bf574183282d219cfa991f7df37aad491d74c11 No Types Assigned
https://git.kernel.org/stable/c/8bf574183282d219cfa991f7df37aad491d74c11 Patch
Changed
Reference Type
https://git.kernel.org/stable/c/8e3c94767cad5150198e4337c8b91f3bb068e14b No Types Assigned
https://git.kernel.org/stable/c/8e3c94767cad5150198e4337c8b91f3bb068e14b Patch
Changed
Reference Type
https://git.kernel.org/stable/c/c660be571609e03e7d5972343536a736fcb31557 No Types Assigned
https://git.kernel.org/stable/c/c660be571609e03e7d5972343536a736fcb31557 Patch
Changed
Reference Type
https://git.kernel.org/stable/c/fcdd5bb4a8c81c64c1334d7e0aba41a8829a24de No Types Assigned
https://git.kernel.org/stable/c/fcdd5bb4a8c81c64c1334d7e0aba41a8829a24de Patch
New CVE Received from kernel.org
5/20/2024 6:15:13 AM
Action
Type
Old Value
New Value
Added
Description
Record truncated, showing 2048 of 3998 characters.
View Entire Change Record
In the Linux kernel, the following vulnerability has been resolved:
dma: xilinx_dpdma: Fix locking
There are several places where either chan->lock or chan->vchan.lock was
not held. Add appropriate locking. This fixes lockdep warnings like
[ 31.077578] ------------[ cut here ]------------
[ 31.077831] WARNING: CPU: 2 PID: 40 at drivers/dma/xilinx/xilinx_dpdma.c:834 xilinx_dpdma_chan_queue_transfer+0x274/0x5e0
[ 31.077953] Modules linked in:
[ 31.078019] CPU: 2 PID: 40 Comm: kworker/u12:1 Not tainted 6.6.20+ #98
[ 31.078102] Hardware name: xlnx,zynqmp (DT)
[ 31.078169] Workqueue: events_unbound deferred_probe_work_func
[ 31.078272] pstate: 600000c5 (nZCv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[ 31.078377] pc : xilinx_dpdma_chan_queue_transfer+0x274/0x5e0
[ 31.078473] lr : xilinx_dpdma_chan_queue_transfer+0x270/0x5e0
[ 31.078550] sp : ffffffc083bb2e10
[ 31.078590] x29: ffffffc083bb2e10 x28: 0000000000000000 x27: ffffff880165a168
[ 31.078754] x26: ffffff880164e920 x25: ffffff880164eab8 x24: ffffff880164d480
[ 31.078920] x23: ffffff880165a148 x22: ffffff880164e988 x21: 0000000000000000
[ 31.079132] x20: ffffffc082aa3000 x19: ffffff880164e880 x18: 0000000000000000
[ 31.079295] x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000
[ 31.079453] x14: 0000000000000000 x13: ffffff8802263dc0 x12: 0000000000000001
[ 31.079613] x11: 0001ffc083bb2e34 x10: 0001ff880164e98f x9 : 0001ffc082aa3def
[ 31.079824] x8 : 0001ffc082aa3dec x7 : 0000000000000000 x6 : 0000000000000516
[ 31.079982] x5 : ffffffc7f8d43000 x4 : ffffff88003c9c40 x3 : ffffffffffffffff
[ 31.080147] x2 : ffffffc7f8d43000 x1 : 00000000000000c0 x0 : 0000000000000000
[ 31.080307] Call trace:
[ 31.080340] xilinx_dpdma_chan_queue_transfer+0x274/0x5e0
[ 31.080518] xilinx_dpdma_issue_pending+0x11c/0x120
[ 31.080595] zynqmp_disp_layer_update+0x180/0x3ac
[ 31.080712] zynqmp_dpsub_plane_atomic_update+0x11c/0x21c
[ 31.080825] drm_atomic_helper_commit_planes+0x20c/0x684
[ 31.080951] drm_atomic_helper_
Added
Reference
kernel.org https://git.kernel.org/stable/c/0ccac964520a6f19e355652c8ca38af2a7f27076 [No types assigned]
Added
Reference
kernel.org https://git.kernel.org/stable/c/244296cc3a155199a8b080d19e645d7d49081a38 [No types assigned]
Added
Reference
kernel.org https://git.kernel.org/stable/c/8bf574183282d219cfa991f7df37aad491d74c11 [No types assigned]
Added
Reference
kernel.org https://git.kernel.org/stable/c/8e3c94767cad5150198e4337c8b91f3bb068e14b [No types assigned]
Added
Reference
kernel.org https://git.kernel.org/stable/c/c660be571609e03e7d5972343536a736fcb31557 [No types assigned]
Added
Reference
kernel.org https://git.kernel.org/stable/c/fcdd5bb4a8c81c64c1334d7e0aba41a8829a24de [No types assigned]
Quick Info
CVE Dictionary Entry: CVE-2024-35990 NVD
Published Date: 05/20/2024 NVD
Last Modified: 06/17/2026
Source: kernel.org