CVE-2024-53067

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 19, 2024
Updated: Nov 25, 2024

Summary

[CVE-2024-53067] The Linux kernel vulnerability, identified as 'CVE-2024-53067', affected the UFS (Unix File System) driver's handling of the Real-Time Clock (RTC) update work. The RTC update work was initiated prematurely, causing a kernel crash due to incomplete initialization of runtime power management in the UFS driver. The patch resolution involves delaying the RTC update work until after the power management initialization is complete, thus preventing the reported internal error and the associated security implications.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share