CVE-2024-40945

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-40945

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40945.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-40945

Downstream

BELL-CVE-2024-40945

DEBIAN-CVE-2024-40945

DLA-4102-1

DSA-5730-1

OESA-2024-1941

OESA-2024-1942

OESA-2024-2028

OESA-2024-2076

RHSA-2024:9315

SUSE-SU-2024:2894-1

SUSE-SU-2024:2939-1

SUSE-SU-2024:2947-1

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3383-1

Related

Published

2024-07-12T13:15:16Z

Modified

2025-08-09T19:01:28Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

iommu: Return right value in iommusvabind_device()

iommusvabinddevice() should return either a sva bond handle or an ERRPTR value in error cases. Existing drivers (idxd and uacce) only check the return value with IS_ERR(). This could potentially lead to a kernel NULL pointer dereference issue if the function returns NULL instead of an error pointer.

In reality, this doesn't cause any problems because iommusvabinddevice() only returns NULL when the kernel is not configured with CONFIGIOMMUSVA. In this case, iommudevenablefeature(dev, IOMMUDEVFEATSVA) will return an error, and the device drivers won't call iommusvabinddevice() at all.

References

Affected packages