CVE-2024-50174

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-50174
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50174.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-50174
Downstream
Related
Published
2024-11-08T05:23:56Z
Modified
2025-10-22T04:45:14.384546Z
Severity
  • 4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
drm/panthor: Fix race when converting group handle to group object
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/panthor: Fix race when converting group handle to group object

XArray provides it's own internal lock which protects the internal array when entries are being simultaneously added and removed. However there is still a race between retrieving the pointer from the XArray and incrementing the reference count.

To avoid this race simply hold the internal XArray lock when incrementing the reference count, this ensures there cannot be a racing call to xa_erase().

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
de85488138247d034eb3241840424a54d660926b
Fixed
8a585d553c11965332d7a2d74e79ef92a42bfc87
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
de85488138247d034eb3241840424a54d660926b
Fixed
44742138d151c3a945460ae7beff8ae45ac0bf58
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
de85488138247d034eb3241840424a54d660926b
Fixed
cac075706f298948898b1f63e81709df42afa75d

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.10.1
v6.10.10
v6.10.11
v6.10.12
v6.10.13
v6.10.2
v6.10.3
v6.10.4
v6.10.5
v6.10.6
v6.10.7
v6.10.8
v6.10.9
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.8
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "id": "CVE-2024-50174-00df2eb8",
        "deprecated": false,
        "digest": {
            "length": 1507.0,
            "function_hash": "211646402064077275206349609467847957374"
        },
        "signature_version": "v1",
        "target": {
            "function": "panthor_job_create",
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44742138d151c3a945460ae7beff8ae45ac0bf58"
    },
    {
        "id": "CVE-2024-50174-02bb6ebe",
        "deprecated": false,
        "digest": {
            "length": 1507.0,
            "function_hash": "211646402064077275206349609467847957374"
        },
        "signature_version": "v1",
        "target": {
            "function": "panthor_job_create",
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cac075706f298948898b1f63e81709df42afa75d"
    },
    {
        "id": "CVE-2024-50174-4fa03112",
        "deprecated": false,
        "digest": {
            "length": 642.0,
            "function_hash": "203261281003738599118024673012940557793"
        },
        "signature_version": "v1",
        "target": {
            "function": "panthor_group_get_state",
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cac075706f298948898b1f63e81709df42afa75d"
    },
    {
        "id": "CVE-2024-50174-5c03c2bf",
        "deprecated": false,
        "digest": {
            "length": 1507.0,
            "function_hash": "211646402064077275206349609467847957374"
        },
        "signature_version": "v1",
        "target": {
            "function": "panthor_job_create",
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8a585d553c11965332d7a2d74e79ef92a42bfc87"
    },
    {
        "id": "CVE-2024-50174-5d07f562",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "23353691112940290813127095340522365833",
                "145681316470060315675553868623659905520",
                "26785367453219774420000790589266842358",
                "229777378135999340935290565509006260241",
                "107142716132224680017294312465406284786",
                "225660546527429569741790141363513756321",
                "294684081933616369049371737392856381259",
                "331785636225744790923484191728930782286",
                "74803739871127622410592770642744803337",
                "24936509617732054260964871945772744100",
                "42162725458663974469504292494306898922"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8a585d553c11965332d7a2d74e79ef92a42bfc87"
    },
    {
        "id": "CVE-2024-50174-6dc6f791",
        "deprecated": false,
        "digest": {
            "length": 642.0,
            "function_hash": "203261281003738599118024673012940557793"
        },
        "signature_version": "v1",
        "target": {
            "function": "panthor_group_get_state",
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8a585d553c11965332d7a2d74e79ef92a42bfc87"
    },
    {
        "id": "CVE-2024-50174-b1cb9593",
        "deprecated": false,
        "digest": {
            "length": 642.0,
            "function_hash": "203261281003738599118024673012940557793"
        },
        "signature_version": "v1",
        "target": {
            "function": "panthor_group_get_state",
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44742138d151c3a945460ae7beff8ae45ac0bf58"
    },
    {
        "id": "CVE-2024-50174-b40f0b78",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "23353691112940290813127095340522365833",
                "145681316470060315675553868623659905520",
                "26785367453219774420000790589266842358",
                "229777378135999340935290565509006260241",
                "107142716132224680017294312465406284786",
                "225660546527429569741790141363513756321",
                "294684081933616369049371737392856381259",
                "331785636225744790923484191728930782286",
                "74803739871127622410592770642744803337",
                "24936509617732054260964871945772744100",
                "42162725458663974469504292494306898922"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cac075706f298948898b1f63e81709df42afa75d"
    },
    {
        "id": "CVE-2024-50174-ce9ca105",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "23353691112940290813127095340522365833",
                "145681316470060315675553868623659905520",
                "26785367453219774420000790589266842358",
                "229777378135999340935290565509006260241",
                "107142716132224680017294312465406284786",
                "225660546527429569741790141363513756321",
                "294684081933616369049371737392856381259",
                "331785636225744790923484191728930782286",
                "74803739871127622410592770642744803337",
                "24936509617732054260964871945772744100",
                "42162725458663974469504292494306898922"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/panthor/panthor_sched.c"
        },
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44742138d151c3a945460ae7beff8ae45ac0bf58"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.10.0
Fixed
6.10.14
Type
ECOSYSTEM
Events
Introduced
6.11.0
Fixed
6.11.3