{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-58004","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-02-27T02:10:48.226Z","datePublished":"2025-02-27T02:12:01.426Z","dateUpdated":"2025-05-04T10:08:12.333Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T10:08:12.333Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: intel/ipu6: remove cpu latency qos request on error\n\nFix cpu latency qos list corruption like below. It happens when\nwe do not remove cpu latency request on error path and free\ncorresponding memory.\n\n[   30.634378] l7 kernel: list_add corruption. prev->next should be next (ffffffff9645e960), but was 0000000100100001. (prev=ffff8e9e877e20a8).\n[   30.634388] l7 kernel: WARNING: CPU: 2 PID: 2008 at lib/list_debug.c:32 __list_add_valid_or_report+0x83/0xa0\n<snip>\n[   30.634640] l7 kernel: Call Trace:\n[   30.634650] l7 kernel:  <TASK>\n[   30.634659] l7 kernel:  ? __list_add_valid_or_report+0x83/0xa0\n[   30.634669] l7 kernel:  ? __warn.cold+0x93/0xf6\n[   30.634678] l7 kernel:  ? __list_add_valid_or_report+0x83/0xa0\n[   30.634690] l7 kernel:  ? report_bug+0xff/0x140\n[   30.634702] l7 kernel:  ? handle_bug+0x58/0x90\n[   30.634712] l7 kernel:  ? exc_invalid_op+0x17/0x70\n[   30.634723] l7 kernel:  ? asm_exc_invalid_op+0x1a/0x20\n[   30.634733] l7 kernel:  ? __list_add_valid_or_report+0x83/0xa0\n[   30.634742] l7 kernel:  plist_add+0xdd/0x140\n[   30.634754] l7 kernel:  pm_qos_update_target+0xa0/0x1f0\n[   30.634764] l7 kernel:  cpu_latency_qos_update_request+0x61/0xc0\n[   30.634773] l7 kernel:  intel_dp_aux_xfer+0x4c7/0x6e0 [i915 1f824655ed04687c2b0d23dbce759fa785f6d033]"}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/pci/intel/ipu6/ipu6-isys.c"],"versions":[{"version":"f50c4ca0a82003b8a542c3332fd292cf1bc355a2","lessThan":"1496ec94bd38bdb25ca13b1dd4f8e7a6176ea89d","status":"affected","versionType":"git"},{"version":"f50c4ca0a82003b8a542c3332fd292cf1bc355a2","lessThan":"95275736185ecb71dc97a71d8d9d19e4ffb0a9eb","status":"affected","versionType":"git"},{"version":"f50c4ca0a82003b8a542c3332fd292cf1bc355a2","lessThan":"facb541ff0805314e0b56e508f7d3cbd07af513c","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/pci/intel/ipu6/ipu6-isys.c"],"versions":[{"version":"6.10","status":"affected"},{"version":"0","lessThan":"6.10","status":"unaffected","versionType":"semver"},{"version":"6.12.14","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.13.3","lessThanOrEqual":"6.13.*","status":"unaffected","versionType":"semver"},{"version":"6.14","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.10","versionEndExcluding":"6.12.14"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.10","versionEndExcluding":"6.13.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.10","versionEndExcluding":"6.14"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1496ec94bd38bdb25ca13b1dd4f8e7a6176ea89d"},{"url":"https://git.kernel.org/stable/c/95275736185ecb71dc97a71d8d9d19e4ffb0a9eb"},{"url":"https://git.kernel.org/stable/c/facb541ff0805314e0b56e508f7d3cbd07af513c"}],"title":"media: intel/ipu6: remove cpu latency qos request on error","x_generator":{"engine":"bippy-1.2.0"}}}}