CVE-2024-27004 — Improper Locking in Linux
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 96.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 1
Latest updateSep 18
Description
In the Linux kernel, the following vulnerability has been resolved:
clk: Get runtime PM before walking tree during disable_unused
Doug reported [1] the following hung task:
INFO: task swapper/0:1 blocked for more than 122 seconds.
Not tainted 5.15.149-21875-gf795ebc40eb8 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:swapper/0 state:D stack: 0 pid: 1 ppid: 0 flags:0x00000008
Call trace:
__switch_to+0xf4/0x1f4
__schedule+0x418/0xb80
schedule+0x5c/0x10c
rpm_re…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages3 packages
▶CVEListV5linux/linux9a34b45397e5a389e25a0c5d39983300d040e5e2 — 253ab38d1ee652a596942156978a233970d185ba+7
Also affects: Debian Linux 10.0, Fedora 38, 39, 40
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-cf9c-p3v8-r72c: In the Linux kernel, the following vulnerability has been resolved:
clk: Get runtime PM before walking tree during disable_unused
Doug reported [1]↗2024-05-01
OSV▶
CVE-2024-27004: In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree during disable_unused Doug reported [1] th↗2024-05-01
📋Vendor Advisories
20💬Community
1Bugzilla
▶