CVE-2024-56585Improper Locking in Linux

CWE-667Improper Locking5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 86.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedDec 27

Description

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix sleeping in atomic context for PREEMPT_RT Commit bab1c299f3945ffe79 ("LoongArch: Fix sleeping in atomic context in setup_tlb_handler()") changes the gfp flag from GFP_KERNEL to GFP_ATOMIC for alloc_pages_node(). However, for PREEMPT_RT kernels we can still get a "sleeping in atomic context" error: [ 0.372259] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 [ 0.372266] in_at

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDlinux/linux_kernel5.196.1.120+2
Debianlinux/linux_kernel< 6.1.123-1+2
CVEListV5linux/linuxfa96b57c149061f71a70bd6582d995f6424fbbf408715b741f9b2a925d6485491e4907f3b29bac70+4
debiandebian/linux< linux 6.1.123-1 (bookworm)
debiandebian/linux-6.1< linux 6.1.123-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-2ggg-8w3g-3x2x: In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix sleeping in atomic context for PREEMPT_RT Commit bab1c299f3945ffe2024-12-27
OSV
CVE-2024-56585: In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix sleeping in atomic context for PREEMPT_RT Commit bab1c299f3945ffe792024-12-27

📋Vendor Advisories

2
Red Hat
kernel: LoongArch: Fix sleeping in atomic context for PREEMPT_RT2024-12-27
Debian
CVE-2024-56585: linux - In the Linux kernel, the following vulnerability has been resolved: LoongArch: ...2024