Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2024-56620
CVE-2024-56620:
Linux Kernel vulnerability analysis and mitigation
Overview
CVE-2024-56620 affects the Linux kernel's SCSI UFS Qualcomm driver. The vulnerability was discovered and disclosed on December 27, 2024, and involves a NULL pointer dereference issue in the platform MSI handling when ESI (Enhanced Scheduling Interface) is not enabled (NVD).
Technical details
The vulnerability occurs in the Linux kernel's SCSI UFS Qualcomm driver when attempting to free platform MSIs without checking if ESI is enabled. This results in a NULL pointer dereference at virtual address 0x0000000000000008. The CVSS v3.1 base score is 5.5 (Medium) with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).
Impact
The vulnerability can lead to a kernel NULL pointer dereference, potentially causing system crashes or denial of service conditions when removing the UFS Qualcomm driver (NVD).
Mitigation and workarounds
A fix has been implemented in the Linux kernel that adds a check to only free platform MSIs when ESI is enabled. The patch modifies the ufs_qcom_remove function to verify host->esi_enabled before calling platform_device_msi_free_irqs_all (Kernel Patch).
Additional resources
Source: This report was generated using AI
Related Linux Kernel vulnerabilities:
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management