CVE-2024-35991
Description
In the Linux kernel, the following vulnerability has been resolved:dmaengine: idxd: Convert spinlock to mutex to lock evl workqueuedrain_workqueue() cannot be called safely in a spinlocked context due topossible task rescheduling. In the multi-task scenario, callingqueue_work() while drain_workqueue() will lead to a Call Trace aspushing a work on a draining workqueue is not permitted in spinlockedcontext. Call Trace: __warn+0x7d/0x140 __queue_work+0x2b2/0x440 report_bug+0x1f8/0x200 handle_bug+0x3c/0x70 exc_invalid_op+0x18/0x70 asm_exc_invalid_op+0x1a/0x20 __queue_work+0x2b2/0x440 queue_work_on+0x28/0x30 idxd_misc_thread+0x303/0x5a0 [idxd] __schedule+0x369/0xb40 __pfx_irq_thread_fn+0x10/0x10 irq_thread+0xbc/0x1b0 irq_thread_fn+0x21/0x70 irq_thread+0x102/0x1b0 preempt_count_add+0x74/0xa0 __pfx_irq_thread_dtor+0x10/0x10 __pfx_irq_thread+0x10/0x10 kthread+0x103/0x140 __pfx_kthread+0x10/0x10 ret_from_fork+0x31/0x50 __pfx_kthread+0x10/0x10 ret_from_fork_asm+0x1b/0x30 The current implementation uses a spinlock to protect event log workqueueand will lead to the Call Trace due to potential task rescheduling.To address the locking issue, convert the spinlock to mutex, allowingthe drain_workqueue() to be called in a safe mutex-locked context.This change ensures proper synchronization when accessing the event logworkqueue, preventing potential Call Trace and improving the overallrobustness of the code.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.022
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in IBM Security Guardium 12.0 | Windows |
| Multiple Vulnerabilities are affected in IBM Security Guardium 12.1 | Windows |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1008-gke_6.8.0-1008.11_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1010-ibm_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1010-oem_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1011-nvidia_6.8.0-1011.11_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1011-nvidia_6.8.0-1011.11~22.04.1_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1012-gcp_6.8.0-1012.13_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-1013-aws_6.8.0-1013.14_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-6.8.0-40-generic_6.8.0-40.40_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-aws_6.8.0-1013.14_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-gcp_6.8.0-1012.13_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-generic_6.8.0-40.40_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-generic-hwe-24.04_6.8.0-40.40_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-gke_6.8.0-1008.11_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-ibm_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-ibm-classic_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-ibm-lts-24.04_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-kvm_6.8.0-40.40_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-nvidia_6.8.0-1011.11_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-nvidia-6.8_6.8.0-1011.11~22.04.1_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-oem-24.04_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-oem-24.04a_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-virtual_6.8.0-40.40_amd64.deb | Linux |
| Linux kernel (USN-6949-1) linux-image-virtual-hwe-24.04_6.8.0-40.40_amd64.deb | Linux |
| Linux low latency kernel for NVIDIA systems (USN-6952-1) linux-image-6.8.0-1010-oracle_6.8.0-1010.10_amd64.deb | Linux |
| Linux low latency kernel for NVIDIA systems (USN-6952-1) linux-image-6.8.0-1011-nvidia-lowlatency_6.8.0-1011.11.1_amd64.deb | Linux |
| Linux low latency kernel for NVIDIA systems (USN-6952-1) linux-image-nvidia-lowlatency_6.8.0-1011.11.1_amd64.deb | Linux |
| Linux low latency kernel for NVIDIA systems (USN-6952-1) linux-image-oracle_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel for OEM systems (USN-6955-1) linux-image-6.8.0-1010-oem_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel for OEM systems (USN-6955-1) linux-image-oem-24.04_6.8.0-1010.10_amd64.deb | Linux |
| Linux kernel for OEM systems (USN-6955-1) linux-image-oem-24.04a_6.8.0-1010.10_amd64.deb | Linux |
| Linux low latency kernel (USN-6949-2) linux-image-6.8.0-40-lowlatency_6.8.0-40.40.1_amd64.deb | Linux |
| Linux low latency kernel (USN-6949-2) linux-image-lowlatency_6.8.0-40.40.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6952-2) linux-image-6.8.0-1012-azure_6.8.0-1012.14_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6952-2) linux-image-6.8.0-1012-azure-fde_6.8.0-1012.14_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6952-2) linux-image-azure_6.8.0-1012.14_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6952-2) linux-image-azure-fde_6.8.0-1012.14_amd64.deb | Linux |
| Kernel-uek-modules-extra update (ELSA-2024-12682) kernel-uek-modules-extra-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-modules-extra update (ELSA-2024-12682) kernel-uek-modules-extra-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Bpftool update (ELSA-2024-12682) bpftool-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Bpftool update (ELSA-2024-12682) bpftool-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-modules update (ELSA-2024-12682) kernel-uek-modules-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-modules update (ELSA-2024-12682) kernel-uek-modules-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2024-12682) kernel-uek-doc-5.15.0-300.163.18.el9uek.noarch.rpm | Linux |
| Kernel-uek-doc update (ELSA-2024-12682) kernel-uek-doc-5.15.0-300.163.18.el8uek.noarch.rpm | Linux |
| Kernel-uek-devel update (ELSA-2024-12682) kernel-uek-devel-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2024-12682) kernel-uek-devel-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-modules-extra update (ELSA-2024-12682) kernel-uek-debug-modules-extra-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-debug-modules-extra update (ELSA-2024-12682) kernel-uek-debug-modules-extra-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-modules update (ELSA-2024-12682) kernel-uek-debug-modules-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2024-12682) kernel-uek-debug-devel-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2024-12682) kernel-uek-debug-devel-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-core update (ELSA-2024-12682) kernel-uek-debug-core-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-debug-core update (ELSA-2024-12682) kernel-uek-debug-core-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2024-12682) kernel-uek-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2024-12682) kernel-uek-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-container update (ELSA-2024-12682) kernel-uek-container-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-container update (ELSA-2024-12682) kernel-uek-container-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2024-12682) kernel-uek-container-debug-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2024-12682) kernel-uek-container-debug-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-core update (ELSA-2024-12682) kernel-uek-core-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-core update (ELSA-2024-12682) kernel-uek-core-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2024-12682) kernel-uek-debug-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2024-12682) kernel-uek-debug-5.15.0-300.163.18.el9uek.x86_64.rpm | Linux |
| Kernel-uek-debug-modules update (ELSA-2024-12682) kernel-uek-debug-modules-5.15.0-300.163.18.el8uek.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update rv-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update rtla-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update python3-perf-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update perf-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-uki-virt-addons-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-uki-virt-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-tools-libs-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-tools-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-extra-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-headers-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-doc-5.14.0-503.11.1.el9_5.noarch.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-devel-matched-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-devel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-uki-virt-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-extra-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-devel-matched-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-devel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-abi-stablelists-5.14.0-503.11.1.el9_5.noarch.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update bpftool-7.4.0-503.11.1.el9_5.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234