s390/dasd:修复双模块引用计数递减 (CVE-2024-27054)

CVE编号

CVE-2024-27054

利用情况

暂无

补丁情况

N/A

披露时间

2024-05-01
漏洞描述
In the Linux kernel, the following vulnerability has been resolved:

s390/dasd: fix double module refcount decrement

Once the discipline is associated with the device, deleting the device
takes care of decrementing the module's refcount. Doing it manually on
this error path causes refcount to artificially decrease on each error
while it should just stay the same.
解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接
https://git.kernel.org/stable/c/ad999aa18103fa038787b6a8a55020abcf34df1a
https://git.kernel.org/stable/c/c3116e62ddeff79cae342147753ce596f01fcf06
https://git.kernel.org/stable/c/ebc5a3bd79e54f98c885c26f0862a27a02c487c5
https://git.kernel.org/stable/c/ec09bcab32fc4765e0cc97e1b72cdd067135f37e
https://git.kernel.org/stable/c/edbdb0d94143db46edd373cc93e433832d29fe19
https://git.kernel.org/stable/c/fa18aa507ea71d8914b6acb2c94db311c757c650
受影响软件情况
# 类型 厂商 产品 版本 影响面
1
运行在以下环境
系统 debian_12 linux * Up to
(excluding)
6.1.85-1
CVSS3评分
N/A
  • 攻击路径
    N/A
  • 攻击复杂度
    N/A
  • 权限要求
    N/A
  • 影响范围
    N/A
  • 用户交互
    N/A
  • 可用性
    N/A
  • 保密性
    N/A
  • 完整性
    N/A
N/A
CWE-ID 漏洞类型
阿里云安全产品覆盖情况