Improper locking in Linux kernel - CVE-2024-36976
Published: June 19, 2024 / Updated: May 13, 2025
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the v4l2_ctrl_handler_setup(), log_ctrl() and v4l2_ctrl_handler_log_status() functions in drivers/media/v4l2-core/v4l2-ctrls-core.c. A local user can perform a denial of service (DoS) attack.