CVE-2024-26758
Description
In the Linux kernel, the following vulnerability has been resolved:md: Dont ignore suspended array in md_check_recovery()mddev_suspend() never stop sync_thread, hence it doesnt make sense toignore suspended array in md_check_recovery(), which might causesync_thread cant be unregistered.After commit f52f5c71f3d4 (md: fix stopping sync thread), followinghang can be triggered by test shell/integrity-caching.sh:1) suspend the array:raid_postsuspend mddev_suspend2) stop the array:raid_dtr md_stop __md_stop_writes stop_sync_thread set_bit(MD_RECOVERY_INTR, &mddev->recovery); md_wakeup_thread_directly(mddev->sync_thread); wait_event(..., !test_bit(MD_RECOVERY_RUNNING, &mddev->recovery))3) sync thread done:md_do_sync set_bit(MD_RECOVERY_DONE, &mddev->recovery); md_wakeup_thread(mddev->thread);4) daemon thread cant unregister sync thread:md_check_recovery if (mddev->suspended) return; -> return directly md_read_sync_thread clear_bit(MD_RECOVERY_RUNNING, &mddev->recovery); -> MD_RECOVERY_RUNNING cant be cleared, hence step 2 hang;This problem is not just related to dm-raid, fix it by ignoringsuspended array in md_check_recovery(). And follow up patches willimprove dm-raid better to frozen sync thread during suspend.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.008
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2024:2571-1(Legacy Module 15-SP6 ) reiserfs-kmp-default-debuginfo-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Legacy Module 15-SP6 ) reiserfs-kmp-default-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-syms-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-source-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-obs-build-debugsource-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-obs-build-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-macros-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-docs-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-devel-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-devel-debuginfo-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-devel-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-debugsource-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-debuginfo-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-base-6.4.0-150600.23.14.2.150600.12.4.3.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-syms-azure-6.4.0-150600.8.8.1.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-source-azure-6.4.0-150600.8.8.2.noarch.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-devel-azure-6.4.0-150600.8.8.2.noarch.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-devel-debuginfo-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-devel-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-debugsource-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-debuginfo-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update rv-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update rtla-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update python3-perf-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update perf-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-uki-virt-addons-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-uki-virt-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-tools-libs-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-tools-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-extra-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-headers-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-doc-5.14.0-503.11.1.el9_5.noarch.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-devel-matched-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-devel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-uki-virt-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-extra-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-devel-matched-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-devel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-abi-stablelists-5.14.0-503.11.1.el9_5.noarch.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update bpftool-7.4.0-503.11.1.el9_5.x86_64.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-6.4.0-150600.8.17.2.x86_64.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-debuginfo-6.4.0-150600.8.17.2.x86_64.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-debugsource-6.4.0-150600.8.17.2.x86_64.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-devel-6.4.0-150600.8.17.2.x86_64.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-devel-debuginfo-6.4.0-150600.8.17.2.x86_64.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-devel-azure-6.4.0-150600.8.17.1.noarch.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-source-azure-6.4.0-150600.8.17.1.noarch.rpm | Linux |
| SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-syms-azure-6.4.0-150600.8.17.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-base-6.4.0-150600.23.30.1.150600.12.12.6.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-debuginfo-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-debugsource-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-devel-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-devel-debuginfo-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-devel-6.4.0-150600.23.30.1.noarch.rpm | Linux |
| SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-docs-6.4.0-150600.23.30.1.noarch.rpm | Linux |
| SUSE-SU-2024:4318-1(Legacy Module 15-SP6) reiserfs-kmp-default-debuginfo-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-macros-6.4.0-150600.23.30.1.noarch.rpm | Linux |
| SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-obs-build-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-obs-build-debugsource-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-source-6.4.0-150600.23.30.1.noarch.rpm | Linux |
| SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-syms-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
| SUSE-SU-2024:4318-1(Legacy Module 15-SP6) reiserfs-kmp-default-6.4.0-150600.23.30.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234