CVE-2024-53136Race Condition in Linux

CWE-362Race Condition33 documents7 sources
Severity
4.7MEDIUMNVD
OSV7.8OSV5.5
EPSS
0.0%
top 98.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
LinuxLinux KernelDebian Linux+3 more
Timeline
PublishedDec 4
Latest updateApr 28

Description

In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmem_getattr()" Revert d949d1d14fa2 ("mm: shmem: fix data-race in shmem_getattr()") as suggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over NFS. As Hugh commented, "added just to silence a syzbot sanitizer splat: added where there has never been any practical problem".

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages8 packages

NVDlinux/linux_kernel4.19.3234.19.325+6
Debianlinux/linux_kernel< 5.10.234-1+3
Ubuntulinux/linux_kernel< 5.4.0-211.231+1
CVEListV5linux/linux9fb9703cd43ee20a6de8ccdef991677b7274cec036b537e8f302f670c7cf35d88a3a294443e32d52+14
debiandebian/linux< linux 6.1.119-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

16
OSV
linux-gcp-5.15 vulnerabilities2025-04-28
OSV
linux-intel-iotg-5.15 vulnerabilities2025-04-24
OSV
linux-ibm-5.4 vulnerabilities2025-04-24
OSV
linux-azure-5.15, linux-azure-fde-5.15 vulnerabilities2025-04-07
OSV
linux-hwe-5.15 vulnerabilities2025-04-02

📋Vendor Advisories

16
Ubuntu
Linux kernel (GCP) vulnerabilities2025-04-28
Ubuntu
Linux kernel (IBM) vulnerabilities2025-04-24
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2025-04-24
Ubuntu
Linux kernel (Azure) vulnerabilities2025-04-07
Ubuntu
Linux kernel (HWE) vulnerabilities2025-04-02