Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-43883
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-23 Aug, 2024 | 13:08
Updated At-05 Jan, 2026 | 10:52
Rejected At-
▼CVE Numbering Authority (CNA)
usb: vhci-hcd: Do not drop references before new references are gained

In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained At a few places the driver carries stale pointers to references that can still be used. Make sure that does not happen. This strictly speaking closes ZDI-CAN-22273, though there may be similar races in the driver.

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/usb/usbip/vhci_hcd.c
Default Status
unaffected
Versions
Affected
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before 5a3c473b28ae1c1f7c4dc129e30cb19ae6e96f89 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before 9c3746ce8d8fcb3a2405644fc0eec7fc5312de80 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before 4dacdb9720aaab10b6be121eae55820174d97174 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before e8c1e606dab8c56cf074b43b98d0805de7322ba2 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before 585e6bc7d0a9bf73a8be3d3fb34e86b90cc61a14 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before 128e82e41cf7d74a562726c1587d9d2ede1a0a37 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before c3d0857b7fc2c49f68f89128a5440176089a8f54 (git)
  • From 7606ee8aa33287dd3e6eb44c78541b87a413a325 before afdcfd3d6fcdeca2735ca8d994c5f2d24a368f0a (git)
  • 96ea4801d2035f89fc4ec4a67f49a18c35cb6715 (git)
  • 075b4e6a982d38121250c090f7b9294314ac1b19 (git)
  • 436e52f1a628233f080605dd736594df250897ca (git)
  • 1c8d316294916da7e2a2f1f178ca3f3bd6d7b531 (git)
  • 927c3fa44e24300eb827ab9f9dacce6dff9c9bb7 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/usb/usbip/vhci_hcd.c
Default Status
affected
Versions
Affected
  • 2.6.38
Unaffected
  • From 0 before 2.6.38 (semver)
  • From 4.19.320 through 4.19.* (semver)
  • From 5.4.282 through 5.4.* (semver)
  • From 5.10.224 through 5.10.* (semver)
  • From 5.15.165 through 5.15.* (semver)
  • From 6.1.105 through 6.1.* (semver)
  • From 6.6.46 through 6.6.* (semver)
  • From 6.10.5 through 6.10.* (semver)
  • From 6.11 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/5a3c473b28ae1c1f7c4dc129e30cb19ae6e96f89
N/A
https://git.kernel.org/stable/c/9c3746ce8d8fcb3a2405644fc0eec7fc5312de80
N/A
https://git.kernel.org/stable/c/4dacdb9720aaab10b6be121eae55820174d97174
N/A
https://git.kernel.org/stable/c/e8c1e606dab8c56cf074b43b98d0805de7322ba2
N/A
https://git.kernel.org/stable/c/585e6bc7d0a9bf73a8be3d3fb34e86b90cc61a14
N/A
https://git.kernel.org/stable/c/128e82e41cf7d74a562726c1587d9d2ede1a0a37
N/A
https://git.kernel.org/stable/c/c3d0857b7fc2c49f68f89128a5440176089a8f54
N/A
https://git.kernel.org/stable/c/afdcfd3d6fcdeca2735ca8d994c5f2d24a368f0a
N/A
Hyperlink: https://git.kernel.org/stable/c/5a3c473b28ae1c1f7c4dc129e30cb19ae6e96f89
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/9c3746ce8d8fcb3a2405644fc0eec7fc5312de80
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/4dacdb9720aaab10b6be121eae55820174d97174
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/e8c1e606dab8c56cf074b43b98d0805de7322ba2
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/585e6bc7d0a9bf73a8be3d3fb34e86b90cc61a14
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/128e82e41cf7d74a562726c1587d9d2ede1a0a37
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/c3d0857b7fc2c49f68f89128a5440176089a8f54
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/afdcfd3d6fcdeca2735ca8d994c5f2d24a368f0a
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
N/A
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
N/A
Hyperlink: https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
Resource: N/A
Hyperlink: https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
Resource: N/A
Details not found