Description

In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that event->mmap_mutex is strictly insufficient to serialize the AUX buffer, add a per RB mutex to fully serialize it. Note that in the lock order comment the perf_event::mmap_mutex order was already wrong, that is, it nesting under mmap_lock is not new with this patch.

INFO

Published Date :

2024-09-13T14:49:13.691Z

Last Modified :

2025-11-03T22:16:42.290Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-46713 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-46713.

URL Resource
https://git.kernel.org/stable/c/2ab9d830262c132ab5db2f571003d80850d56b2a cve-icon cve-icon
https://git.kernel.org/stable/c/52d13d224fdf1299c8b642807fa1ea14d693f5ff cve-icon cve-icon
https://git.kernel.org/stable/c/7882923f1cb88dc1a17f2bf0c81b1fc80d44db82 cve-icon cve-icon
https://git.kernel.org/stable/c/9dc7ad2b67772cfb94ceb3b0c9c4023c2463215d cve-icon cve-icon
https://git.kernel.org/stable/c/b9b6882e243b653d379abbeaa64a500182aba370 cve-icon cve-icon
https://git.kernel.org/stable/c/c4b69bee3f4ef76809288fe6827bc14d4ae788ef cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024091316-CVE-2024-46713-5e49@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-46713 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-46713 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact