Security tracker / CVE-2024-27079

CVE-2024-27079

iommu/vt-d: Fix NULL domain on device release

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in 586081d3f6b1 ("iommu/vt-d: Remove DEFER_DEVICE_DOMAIN_INFO").
 carnil> Vulnerable versions: 5.18-rc1.

Bugs

Status

Branch	Status
upstream	released (6.9-rc1) [81e921fd321614c2ad8ac333b041aae1da7a1c6d]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.8-upstream-stable	released (6.8.2) [333fe86968482ca701c609af590003bcea450e8f]
6.6-upstream-stable	needed
6.1-upstream-stable	needed
5.10-upstream-stable	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.8.9-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	needed
5.10-bullseye-security	N/A "Vulnerable code not present"
4.19-buster-security	N/A "Vulnerable code not present"