CVE-2024-26751
ARM Ep93xx GPIO Denial of Service
Description
In the Linux kernel, the following vulnerability has been resolved: ARM: ep93xx: Add terminator to gpiod_lookup_table Without the terminator, if a con_id is passed to gpio_find() that does not exist in the lookup table the function will not stop looping correctly, and eventually cause an oops.
INFO
Published Date :
April 3, 2024, 5:15 p.m.
Last Modified :
March 17, 2025, 4:57 p.m.
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Remotely Exploitable :
No
Impact Score :
3.6
Exploitability Score :
1.8
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2024-26751.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2024-26751 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2024-26751 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
Initial Analysis by [email protected]
Mar. 17, 2025
Action Type Old Value New Value Added CVSS V3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Added CWE NVD-CWE-noinfo Added CPE Configuration OR *cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.16 up to (excluding) 6.1.80 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.11 up to (excluding) 5.15.150 *cpe:2.3:o:linux:linux_kernel:6.8:rc3:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:6.8:rc4:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.15 up to (excluding) 4.19.308 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.20 up to (excluding) 5.4.270 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.5 up to (excluding) 5.10.211 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.2 up to (excluding) 6.6.19 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.7 up to (excluding) 6.7.7 *cpe:2.3:o:linux:linux_kernel:6.8:rc5:*:*:*:*:*:* Added CPE Configuration OR *cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* Added Reference Type CVE: https://git.kernel.org/stable/c/6abe0895b63c20de06685c8544b908c7e413efa8 Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/6abe0895b63c20de06685c8544b908c7e413efa8 Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/70d92abbe29692a3de8697ae082c60f2d21ab482 Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/70d92abbe29692a3de8697ae082c60f2d21ab482 Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/786f089086b505372fb3f4f008d57e7845fff0d8 Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/786f089086b505372fb3f4f008d57e7845fff0d8 Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/97ba7c1f9c0a2401e644760d857b2386aa895997 Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/97ba7c1f9c0a2401e644760d857b2386aa895997 Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/999a8bb70da2946336327b4480824d1691cae1fa Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/999a8bb70da2946336327b4480824d1691cae1fa Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/9e200a06ae2abb321939693008290af32b33dd6e Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/9e200a06ae2abb321939693008290af32b33dd6e Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/eec6cbbfa1e8d685cc245cfd5626d0715a127a48 Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/eec6cbbfa1e8d685cc245cfd5626d0715a127a48 Types: Patch Added Reference Type CVE: https://git.kernel.org/stable/c/fdf87a0dc26d0550c60edc911cda42f9afec3557 Types: Patch Added Reference Type kernel.org: https://git.kernel.org/stable/c/fdf87a0dc26d0550c60edc911cda42f9afec3557 Types: Patch Added Reference Type CVE: https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html Types: Mailing List -
CVE Modified by af854a3a-2127-422b-91ae-364da2661108
Nov. 21, 2024
Action Type Old Value New Value Added Reference https://git.kernel.org/stable/c/6abe0895b63c20de06685c8544b908c7e413efa8 Added Reference https://git.kernel.org/stable/c/70d92abbe29692a3de8697ae082c60f2d21ab482 Added Reference https://git.kernel.org/stable/c/786f089086b505372fb3f4f008d57e7845fff0d8 Added Reference https://git.kernel.org/stable/c/97ba7c1f9c0a2401e644760d857b2386aa895997 Added Reference https://git.kernel.org/stable/c/999a8bb70da2946336327b4480824d1691cae1fa Added Reference https://git.kernel.org/stable/c/9e200a06ae2abb321939693008290af32b33dd6e Added Reference https://git.kernel.org/stable/c/eec6cbbfa1e8d685cc245cfd5626d0715a127a48 Added Reference https://git.kernel.org/stable/c/fdf87a0dc26d0550c60edc911cda42f9afec3557 Added Reference https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html -
CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Nov. 05, 2024
Action Type Old Value New Value Removed Reference kernel.org https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html -
CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Jun. 25, 2024
Action Type Old Value New Value Added Reference kernel.org https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html [No types assigned] -
CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
May. 29, 2024
Action Type Old Value New Value -
CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
May. 14, 2024
Action Type Old Value New Value -
CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Apr. 03, 2024
Action Type Old Value New Value Added Description In the Linux kernel, the following vulnerability has been resolved: ARM: ep93xx: Add terminator to gpiod_lookup_table Without the terminator, if a con_id is passed to gpio_find() that does not exist in the lookup table the function will not stop looping correctly, and eventually cause an oops. Added Reference kernel.org https://git.kernel.org/stable/c/9e200a06ae2abb321939693008290af32b33dd6e [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/999a8bb70da2946336327b4480824d1691cae1fa [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/70d92abbe29692a3de8697ae082c60f2d21ab482 [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/eec6cbbfa1e8d685cc245cfd5626d0715a127a48 [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/786f089086b505372fb3f4f008d57e7845fff0d8 [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/97ba7c1f9c0a2401e644760d857b2386aa895997 [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/6abe0895b63c20de06685c8544b908c7e413efa8 [No types assigned] Added Reference kernel.org https://git.kernel.org/stable/c/fdf87a0dc26d0550c60edc911cda42f9afec3557 [No types assigned]
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2024-26751 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2024-26751
weaknesses.