CVE-2024-42153

i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr

Description

In the Linux kernel, the following vulnerability has been resolved: i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr When del_timer_sync() is called in an interrupt context it throws a warning because of potential deadlock. The timer is used only to exit from wait_for_completion() after a timeout so replacing the call with wait_for_completion_timeout() allows to remove the problematic timer and its related functions altogether.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.04%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/a349e5ab4dc9954746e836cd10b407ce48f9b2f6 patch mailing list
https://git.kernel.org/stable/c/effe0500afda017a86c94482b1e36bc37586c9af patch mailing list
https://git.kernel.org/stable/c/2849a1b747cf37aa5b684527104d3a53f1e296d2 patch mailing list
https://git.kernel.org/stable/c/3503372d0bf7b324ec0bd6b90606703991426176 patch mailing list
https://git.kernel.org/stable/c/3d32327f5cfc087ee3922a3bcdcc29880dcdb50f patch mailing list
https://git.kernel.org/stable/c/92e494a7568b60ae80d57fc0deafcaf3a4029ab3 patch mailing list
https://git.kernel.org/stable/c/27cd3873fa76ebeb9f948baae40cb9a6d8692289 patch mailing list
https://git.kernel.org/stable/c/f63b94be6942ba82c55343e196bd09b53227618e patch mailing list

Frequently Asked Questions

What is the severity of CVE-2024-42153?
CVE-2024-42153 has been scored as a medium severity vulnerability.
How to fix CVE-2024-42153?
To fix CVE-2024-42153, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-42153 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-42153 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-42153?
CVE-2024-42153 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.