vulnerability

Debian: CVE-2024-26593: linux -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:L/AC:L/Au:S/C:C/I:N/A:C)	Feb 23, 2024	May 8, 2024	Mar 30, 2026

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:C)

Published

Feb 23, 2024

Added

May 8, 2024

Modified

Mar 30, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

i2c: i801: Fix block process call transactions

According to the Intel datasheets, software must reset the block
buffer index twice for block process call transactions: once before
writing the outgoing data to the buffer, and once again before
reading the incoming data from the buffer.

The driver is currently missing the second reset, causing the wrong
portion of the block buffer to be read.

Solution

debian-upgrade-linux

References

CVE-2024-26593
https://attackerkb.com/topics/CVE-2024-26593
CWE-125
DEBIAN-DSA-5681-1
EUVD-EUVD-2024-23855
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-23855

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report