Description

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Remove SCSI host only if added If host tries to remove ufshcd driver from a UFS device it would cause a kernel panic if ufshcd_async_scan fails during ufshcd_probe_hba before adding a SCSI host with scsi_add_host and MCQ is enabled since SCSI host has been defered after MCQ configuration introduced by commit 0cab4023ec7b ("scsi: ufs: core: Defer adding host to SCSI if MCQ is supported"). To guarantee that SCSI host is removed only if it has been added, set the scsi_host_added flag to true after adding a SCSI host and check whether it is set or not before removing it.

INFO

Published Date :

2024-09-27T12:39:37.025Z

Last Modified :

2025-05-21T09:13:17.306Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-46843 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-46843.

URL Resource
https://git.kernel.org/stable/c/2f49e05d6b58d660f035a75ff96b77071b4bd5ed cve-icon cve-icon
https://git.kernel.org/stable/c/3844586e9bd9845140e1078f1e61896b576ac536 cve-icon cve-icon
https://git.kernel.org/stable/c/7cbff570dbe8907e23bba06f6414899a0fbb2fcc cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024092755-CVE-2024-46843-82c5@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-46843 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-46843 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact