{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-36893","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-05-30T15:25:07.065Z","datePublished":"2024-05-30T15:28:59.113Z","dateUpdated":"2025-05-04T12:56:25.624Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T12:56:25.624Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: Check for port partner validity before consuming it\n\ntypec_register_partner() does not guarantee partner registration\nto always succeed. In the event of failure, port->partner is set\nto the error value or NULL. Given that port->partner validity is\nnot checked, this results in the following crash:\n\nUnable to handle kernel NULL pointer dereference at virtual address xx\n pc : run_state_machine+0x1bc8/0x1c08\n lr : run_state_machine+0x1b90/0x1c08\n..\n Call trace:\n   run_state_machine+0x1bc8/0x1c08\n   tcpm_state_machine_work+0x94/0xe4\n   kthread_worker_fn+0x118/0x328\n   kthread+0x1d0/0x23c\n   ret_from_fork+0x10/0x20\n\nTo prevent the crash, check for port->partner validity before\nderefencing it in all the call sites."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/usb/typec/tcpm/tcpm.c"],"versions":[{"version":"31220bd89c22a18478f52fcd8069e8e2adb8f4f2","lessThan":"2a07e6f0ad8a6e504a3912cfe8dc859b7d0740a5","status":"affected","versionType":"git"},{"version":"9b7cd3fe01f0d03cf5820b351a6be2a6e0a6da6f","lessThan":"d56d2ca03cc22123fd7626967d096d8661324e57","status":"affected","versionType":"git"},{"version":"c97cd0b4b54eb42aed7f6c3c295a2d137f6d2416","lessThan":"789326cafbd1f67f424436b6bc8bdb887a364637","status":"affected","versionType":"git"},{"version":"c97cd0b4b54eb42aed7f6c3c295a2d137f6d2416","lessThan":"fc2b655cb6dd2b381f1f284989721002e39b6b77","status":"affected","versionType":"git"},{"version":"c97cd0b4b54eb42aed7f6c3c295a2d137f6d2416","lessThan":"ae11f04b452b5205536e1c02d31f8045eba249dd","status":"affected","versionType":"git"},{"version":"2897b36d2482b84f35e659989d5cb4501fb31ccd","status":"affected","versionType":"git"},{"version":"cbcf107780aecf51aba68488044a416d95060b6d","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/usb/typec/tcpm/tcpm.c"],"versions":[{"version":"6.6","status":"affected"},{"version":"0","lessThan":"6.6","status":"unaffected","versionType":"semver"},{"version":"5.15.168","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.91","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.31","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.8.10","lessThanOrEqual":"6.8.*","status":"unaffected","versionType":"semver"},{"version":"6.9","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15.132","versionEndExcluding":"5.15.168"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1.53","versionEndExcluding":"6.1.91"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.6.31"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.8.10"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.4.16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.5.3"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/2a07e6f0ad8a6e504a3912cfe8dc859b7d0740a5"},{"url":"https://git.kernel.org/stable/c/d56d2ca03cc22123fd7626967d096d8661324e57"},{"url":"https://git.kernel.org/stable/c/789326cafbd1f67f424436b6bc8bdb887a364637"},{"url":"https://git.kernel.org/stable/c/fc2b655cb6dd2b381f1f284989721002e39b6b77"},{"url":"https://git.kernel.org/stable/c/ae11f04b452b5205536e1c02d31f8045eba249dd"}],"title":"usb: typec: tcpm: Check for port partner validity before consuming it","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CISA ADP Vulnrichment","metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2024-36893","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-05-30T18:53:53.633071Z"}}}],"providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-04T17:48:05.743Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T03:43:50.062Z"},"title":"CVE Program Container","references":[{"url":"https://git.kernel.org/stable/c/d56d2ca03cc22123fd7626967d096d8661324e57","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/789326cafbd1f67f424436b6bc8bdb887a364637","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/fc2b655cb6dd2b381f1f284989721002e39b6b77","tags":["x_transferred"]},{"url":"https://git.kernel.org/stable/c/ae11f04b452b5205536e1c02d31f8045eba249dd","tags":["x_transferred"]}]}]}}