ID

VAR-202407-2225


CVE

CVE-2024-40912


TITLE

Linux  of  Linux Kernel  resource locking vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2024-006890

DESCRIPTION

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() The ieee80211_sta_ps_deliver_wakeup() function takes sta->ps_lock to synchronizes with ieee80211_tx_h_unicast_ps_buf() which is called from softirq context. However using only spin_lock() to get sta->ps_lock in ieee80211_sta_ps_deliver_wakeup() does not prevent softirq to execute on this same CPU, to run ieee80211_tx_h_unicast_ps_buf() and try to take this same lock ending in deadlock. Below is an example of rcu stall that arises in such situation. rcu: INFO: rcu_sched self-detected stall on CPU rcu: 2-....: (42413413 ticks this GP) idle=b154/1/0x4000000000000000 softirq=1763/1765 fqs=21206996 rcu: (t=42586894 jiffies g=2057 q=362405 ncpus=4) CPU: 2 PID: 719 Comm: wpa_supplicant Tainted: G W 6.4.0-02158-g1b062f552873 #742 Hardware name: RPT (r1) (DT) pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : queued_spin_lock_slowpath+0x58/0x2d0 lr : invoke_tx_handlers_early+0x5b4/0x5c0 sp : ffff00001ef64660 x29: ffff00001ef64660 x28: ffff000009bc1070 x27: ffff000009bc0ad8 x26: ffff000009bc0900 x25: ffff00001ef647a8 x24: 0000000000000000 x23: ffff000009bc0900 x22: ffff000009bc0900 x21: ffff00000ac0e000 x20: ffff00000a279e00 x19: ffff00001ef646e8 x18: 0000000000000000 x17: ffff800016468000 x16: ffff00001ef608c0 x15: 0010533c93f64f80 x14: 0010395c9faa3946 x13: 0000000000000000 x12: 00000000fa83b2da x11: 000000012edeceea x10: ffff0000010fbe00 x9 : 0000000000895440 x8 : 000000000010533c x7 : ffff00000ad8b740 x6 : ffff00000c350880 x5 : 0000000000000007 x4 : 0000000000000001 x3 : 0000000000000000 x2 : 0000000000000000 x1 : 0000000000000001 x0 : ffff00000ac0e0e8 Call trace: queued_spin_lock_slowpath+0x58/0x2d0 ieee80211_tx+0x80/0x12c ieee80211_tx_pending+0x110/0x278 tasklet_action_common.constprop.0+0x10c/0x144 tasklet_action+0x20/0x28 _stext+0x11c/0x284 ____do_softirq+0xc/0x14 call_on_irq_stack+0x24/0x34 do_softirq_own_stack+0x18/0x20 do_softirq+0x74/0x7c __local_bh_enable_ip+0xa0/0xa4 _ieee80211_wake_txqs+0x3b0/0x4b8 __ieee80211_wake_queue+0x12c/0x168 ieee80211_add_pending_skbs+0xec/0x138 ieee80211_sta_ps_deliver_wakeup+0x2a4/0x480 ieee80211_mps_sta_status_update.part.0+0xd8/0x11c ieee80211_mps_sta_status_update+0x18/0x24 sta_apply_parameters+0x3bc/0x4c0 ieee80211_change_station+0x1b8/0x2dc nl80211_set_station+0x444/0x49c genl_family_rcv_msg_doit.isra.0+0xa4/0xfc genl_rcv_msg+0x1b0/0x244 netlink_rcv_skb+0x38/0x10c genl_rcv+0x34/0x48 netlink_unicast+0x254/0x2bc netlink_sendmsg+0x190/0x3b4 ____sys_sendmsg+0x1e8/0x218 ___sys_sendmsg+0x68/0x8c __sys_sendmsg+0x44/0x84 __arm64_sys_sendmsg+0x20/0x28 do_el0_svc+0x6c/0xe8 el0_svc+0x14/0x48 el0t_64_sync_handler+0xb0/0xb4 el0t_64_sync+0x14c/0x150 Using spin_lock_bh()/spin_unlock_bh() instead prevents softirq to raise on the same CPU that is holding the lock. Linux of Linux Kernel contains a resource locking vulnerability.Service operation interruption (DoS) It may be in a state. The RUGGEDCOM RST2428P is a Layer 2 Ethernet switch based on SINEC OS with up to 28 non-blocking interfaces. SCALANCE X switches are used to connect industrial components such as programmable logic controllers (PLCs) and human-machine interfaces (HMIs). Multiple vulnerabilities exist in third-party components prior to SIEMENS SINEC OS V3.2. These vulnerabilities could be exploited to corrupt values, leading to undefined behavior or security issues. ========================================================================== Ubuntu Security Notice USN-7003-1 September 12, 2024 linux, linux-aws, linux-azure, linux-bluefield, linux-gcp, linux-gkeop, linux-ibm, linux-kvm, linux-oracle vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services (AWS) systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems - linux-gkeop: Linux kernel for Google Container Engine (GKE) systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems Details: It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-40902) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - MIPS architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Serial ATA and Parallel ATA drivers; - Drivers core; - GPIO subsystem; - GPU drivers; - Greybus drivers; - HID subsystem; - I2C subsystem; - IIO subsystem; - InfiniBand drivers; - Media drivers; - VMware VMCI Driver; - Network drivers; - Pin controllers subsystem; - S/390 drivers; - SCSI drivers; - USB subsystem; - JFFS2 file system; - JFS file system; - File systems infrastructure; - NILFS2 file system; - IOMMU subsystem; - Sun RPC protocol; - Netfilter; - Memory management; - B.A.T.M.A.N. meshing protocol; - CAN network layer; - Ceph Core library; - Networking core; - IPv4 networking; - IPv6 networking; - IUCV driver; - MAC80211 subsystem; - NET/ROM layer; - Network traffic control; - SoC Audio for Freescale CPUs drivers; (CVE-2024-40905, CVE-2024-41095, CVE-2024-41035, CVE-2024-36974, CVE-2024-40959, CVE-2024-40978, CVE-2024-42236, CVE-2024-40963, CVE-2024-40916, CVE-2024-41006, CVE-2024-39495, CVE-2023-52803, CVE-2024-42070, CVE-2024-41041, CVE-2024-42157, CVE-2024-36894, CVE-2024-42153, CVE-2024-42127, CVE-2024-42224, CVE-2024-40932, CVE-2024-42105, CVE-2024-40968, CVE-2024-41044, CVE-2024-41046, CVE-2023-52887, CVE-2024-42094, CVE-2024-40960, CVE-2024-41007, CVE-2024-40961, CVE-2024-39487, CVE-2024-39502, CVE-2024-42086, CVE-2024-36978, CVE-2024-39503, CVE-2024-41049, CVE-2024-42090, CVE-2024-42232, CVE-2024-39499, CVE-2024-40902, CVE-2024-37078, CVE-2024-39501, CVE-2024-42119, CVE-2024-40901, CVE-2024-42101, CVE-2024-42104, CVE-2024-42145, CVE-2024-41097, CVE-2024-40942, CVE-2024-41034, CVE-2024-40904, CVE-2024-41089, CVE-2024-42084, CVE-2024-42093, CVE-2024-40945, CVE-2024-40958, CVE-2024-42124, CVE-2024-40987, CVE-2024-40912, CVE-2024-39506, CVE-2024-40941, CVE-2024-39509, CVE-2024-40974, CVE-2024-39505, CVE-2024-42115, CVE-2024-40988, CVE-2024-40995, CVE-2024-42097, CVE-2024-41087, CVE-2024-42106, CVE-2024-40984, CVE-2024-40981, CVE-2024-42102, CVE-2024-42148, CVE-2024-42154, CVE-2024-42096, CVE-2024-40934, CVE-2024-40980, CVE-2024-42076, CVE-2024-40943, CVE-2024-42092, CVE-2024-42089, CVE-2024-42223, CVE-2024-38619, CVE-2024-42087, CVE-2024-39469) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS linux-image-5.4.0-1079-ibm 5.4.0-1079.84 linux-image-5.4.0-1092-bluefield 5.4.0-1092.99 linux-image-5.4.0-1099-gkeop 5.4.0-1099.103 linux-image-5.4.0-1120-kvm 5.4.0-1120.128 linux-image-5.4.0-1131-oracle 5.4.0-1131.140 linux-image-5.4.0-1132-aws 5.4.0-1132.142 linux-image-5.4.0-1136-gcp 5.4.0-1136.145 linux-image-5.4.0-1137-azure 5.4.0-1137.144 linux-image-5.4.0-195-generic 5.4.0-195.215 linux-image-5.4.0-195-generic-lpae 5.4.0-195.215 linux-image-5.4.0-195-lowlatency 5.4.0-195.215 linux-image-aws-lts-20.04 5.4.0.1132.129 linux-image-azure-lts-20.04 5.4.0.1137.131 linux-image-bluefield 5.4.0.1092.88 linux-image-gcp-lts-20.04 5.4.0.1136.138 linux-image-generic 5.4.0.195.193 linux-image-generic-lpae 5.4.0.195.193 linux-image-gkeop 5.4.0.1099.97 linux-image-gkeop-5.4 5.4.0.1099.97 linux-image-ibm-lts-20.04 5.4.0.1079.108 linux-image-kvm 5.4.0.1120.116 linux-image-lowlatency 5.4.0.195.193 linux-image-oem 5.4.0.195.193 linux-image-oem-osp1 5.4.0.195.193 linux-image-oracle-lts-20.04 5.4.0.1131.124 linux-image-virtual 5.4.0.195.193 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7003-1 CVE-2023-52803, CVE-2023-52887, CVE-2024-36894, CVE-2024-36974, CVE-2024-36978, CVE-2024-37078, CVE-2024-38619, CVE-2024-39469, CVE-2024-39487, CVE-2024-39495, CVE-2024-39499, CVE-2024-39501, CVE-2024-39502, CVE-2024-39503, CVE-2024-39505, CVE-2024-39506, CVE-2024-39509, CVE-2024-40901, CVE-2024-40902, CVE-2024-40904, CVE-2024-40905, CVE-2024-40912, CVE-2024-40916, CVE-2024-40932, CVE-2024-40934, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943, CVE-2024-40945, CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961, CVE-2024-40963, CVE-2024-40968, CVE-2024-40974, CVE-2024-40978, CVE-2024-40980, CVE-2024-40981, CVE-2024-40984, CVE-2024-40987, CVE-2024-40988, CVE-2024-40995, CVE-2024-41006, CVE-2024-41007, CVE-2024-41034, CVE-2024-41035, CVE-2024-41041, CVE-2024-41044, CVE-2024-41046, CVE-2024-41049, CVE-2024-41087, CVE-2024-41089, CVE-2024-41095, CVE-2024-41097, CVE-2024-42070, CVE-2024-42076, CVE-2024-42084, CVE-2024-42086, CVE-2024-42087, CVE-2024-42089, CVE-2024-42090, CVE-2024-42092, CVE-2024-42093, CVE-2024-42094, CVE-2024-42096, CVE-2024-42097, CVE-2024-42101, CVE-2024-42102, CVE-2024-42104, CVE-2024-42105, CVE-2024-42106, CVE-2024-42115, CVE-2024-42119, CVE-2024-42124, CVE-2024-42127, CVE-2024-42145, CVE-2024-42148, CVE-2024-42153, CVE-2024-42154, CVE-2024-42157, CVE-2024-42223, CVE-2024-42224, CVE-2024-42232, CVE-2024-42236 Package Information: https://launchpad.net/ubuntu/+source/linux/5.4.0-195.215 https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1132.142 https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1137.144 https://launchpad.net/ubuntu/+source/linux-bluefield/5.4.0-1092.99 https://launchpad.net/ubuntu/+source/linux-gcp/5.4.0-1136.145 https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1099.103 https://launchpad.net/ubuntu/+source/linux-ibm/5.4.0-1079.84 https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1120.128 https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1131.140

Trust: 2.34

sources: NVD: CVE-2024-40912 // JVNDB: JVNDB-2024-006890 // CNVD: CNVD-2025-19350 // PACKETSTORM: 181483 // PACKETSTORM: 181512

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-19350

AFFECTED PRODUCTS

vendor:linuxmodel:kernelscope:eqversion:6.10

Trust: 1.8

vendor:linuxmodel:kernelscope:gteversion:5.11

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.20

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.5

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:3.14

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.10.221

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.4.297

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:4.19.317

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:6.2

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.16

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.1.95

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.6.35

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.15.162

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:6.7

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.9.6

Trust: 1.0

vendor:linuxmodel:kernelscope:eqversion:5.16 that's all 6.1.95

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.5 that's all 5.10.221

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion: -

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:6.7 that's all 6.9.6

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:4.20 that's all 5.4.297

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.11 that's all 5.15.162

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:6.2 that's all 6.6.35

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:3.14 that's all 4.19.317

Trust: 0.8

vendor:siemensmodel:ruggedcom rst2428pscope:ltversion:v3.2

Trust: 0.6

vendor:siemensmodel:scalance xc-300/xr-300/xc-400/xr-500wg/xr-500 familyscope:ltversion:v3.2

Trust: 0.6

vendor:siemensmodel:scalance xcm-/xrm-/xch-/xrh-300 familyscope:ltversion:v3.2

Trust: 0.6

sources: CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-006890 // NVD: CVE-2024-40912

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2024-40912
value: MEDIUM

Trust: 1.0

NVD: CVE-2024-40912
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2025-19350
value: HIGH

Trust: 0.6

CNVD: CNVD-2025-19350
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2024-40912
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2024-40912
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-006890 // NVD: CVE-2024-40912

PROBLEMTYPE DATA

problemtype:CWE-667

Trust: 1.0

problemtype:improper lock (CWE-667) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2024-006890 // NVD: CVE-2024-40912

THREAT TYPE

local

Trust: 0.2

sources: PACKETSTORM: 181483 // PACKETSTORM: 181512

PATCH

title:Linux Kernel Archivesurl:https://git.kernel.org/stable/c/28ba44d680a30c51cf485a2f5a3b680e66ed3932

Trust: 0.8

title:Patch for Multiple vulnerabilities exist in third-party components of SIEMENS SINEC OS V3.2 and earlierurl:https://www.cnvd.org.cn/patchInfo/show/723061

Trust: 0.6

sources: CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-006890

EXTERNAL IDS

db:NVDid:CVE-2024-40912

Trust: 2.8

db:SIEMENSid:SSA-355557

Trust: 1.6

db:SIEMENSid:SSA-265688

Trust: 1.0

db:JVNid:JVNVU92169998

Trust: 0.8

db:ICS CERTid:ICSA-25-226-07

Trust: 0.8

db:JVNDBid:JVNDB-2024-006890

Trust: 0.8

db:CNVDid:CNVD-2025-19350

Trust: 0.6

db:PACKETSTORMid:181483

Trust: 0.1

db:PACKETSTORMid:181512

Trust: 0.1

sources: CNVD: CNVD-2025-19350 // PACKETSTORM: 181483 // PACKETSTORM: 181512 // JVNDB: JVNDB-2024-006890 // NVD: CVE-2024-40912

REFERENCES

url:https://cert-portal.siemens.com/productcert/html/ssa-355557.html

Trust: 1.6

url:https://nvd.nist.gov/vuln/detail/cve-2024-40912

Trust: 1.0

url:https://git.kernel.org/stable/c/28ba44d680a30c51cf485a2f5a3b680e66ed3932

Trust: 1.0

url:https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Trust: 1.0

url:https://git.kernel.org/stable/c/d90bdff79f8e40adf889b5408bfcf521528b169f

Trust: 1.0

url:https://git.kernel.org/stable/c/e51637e0c66a6f72d134d9f95daa47ea62b43c7e

Trust: 1.0

url:https://git.kernel.org/stable/c/9c49b58b9a2bed707e7638576e54c4bccd97b9eb

Trust: 1.0

url:https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Trust: 1.0

url:https://git.kernel.org/stable/c/44c06bbde6443de206b30f513100b5670b23fc5e

Trust: 1.0

url:https://git.kernel.org/stable/c/47d176755d5c0baf284eff039560f8c1ba0ea485

Trust: 1.0

url:https://git.kernel.org/stable/c/456bbb8a31e425177dc0e8d4f98728a560c20e81

Trust: 1.0

url:https://git.kernel.org/stable/c/e7e916d693dcb5a297f40312600a82475f2e63bc

Trust: 1.0

url:https://jvn.jp/vu/jvnvu92169998/index.html

Trust: 0.8

url:https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2024-39509

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2023-52803

Trust: 0.2

url:https://ubuntu.com/security/notices/usn-7003-1

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2024-39487

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2024-40902

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2024-39501

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2024-36978

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2024-40905

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2024-39502

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2023-52887

Trust: 0.2

url:https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1099.103

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1120.128

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-39469

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1132.142

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-ibm/5.4.0-1079.84

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-gcp/5.4.0-1136.145

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1137.144

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-39499

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux/5.4.0-195.215

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-40904

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-39503

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1131.140

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-bluefield/5.4.0-1092.99

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-39505

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/linux-xilinx-zynqmp/5.4.0-1051.55

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-40916

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-36974

Trust: 0.1

url:https://ubuntu.com/security/notices/usn-7003-2

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2024-40932

Trust: 0.1

url:https://ubuntu.com/security/notices/usn-7003-3

Trust: 0.1

sources: CNVD: CNVD-2025-19350 // PACKETSTORM: 181483 // PACKETSTORM: 181512 // JVNDB: JVNDB-2024-006890 // NVD: CVE-2024-40912

CREDITS

Ubuntu

Trust: 0.2

sources: PACKETSTORM: 181483 // PACKETSTORM: 181512

SOURCES

db:CNVDid:CNVD-2025-19350
db:PACKETSTORMid:181483
db:PACKETSTORMid:181512
db:JVNDBid:JVNDB-2024-006890
db:NVDid:CVE-2024-40912

LAST UPDATE DATE

2026-06-19T21:33:02.272000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-19350date:2025-08-22T00:00:00
db:JVNDBid:JVNDB-2024-006890date:2025-09-02T00:55:00
db:NVDid:CVE-2024-40912date:2026-05-12T12:16:59.263

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-19350date:2025-08-12T00:00:00
db:PACKETSTORMid:181483date:2024-09-12T14:34:12
db:PACKETSTORMid:181512date:2024-09-13T15:50:21
db:JVNDBid:JVNDB-2024-006890date:2024-08-30T00:00:00
db:NVDid:CVE-2024-40912date:2024-07-12T13:15:14.363