CVE-2024-35806

Published: May 17, 2024Modified: Jan 10, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: soc: fsl: qbman: Always disable interrupts when taking cgr_lock smp_call_function_single disables IRQs when executing the callback. To prevent deadlocks, we must disable IRQs when taking cgr_lock elsewhere. This is already done by qman_update_cgr and qman_delete_cgr; fix the other lockers.

Affected (11)

Products: Linux: Linux Kernel · Debian: Debian Linux

1 product

1 product

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 4.14.32 to 4.15
Linux Linux Kernel	From 4.15.15 to 4.19.312
Linux Linux Kernel	From 4.20 to 5.4.274
Linux Linux Kernel	From 4.9.92 to 4.10
Linux Linux Kernel	From 5.11 to 5.15.154
Linux Linux Kernel	From 5.16 to 6.1.84
Linux Linux Kernel	From 5.5 to 5.10.215
Linux Linux Kernel	From 6.2 to 6.6.24
Linux Linux Kernel	From 6.7 to 6.7.12
Linux Linux Kernel	From 6.8 to 6.8.3

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0

Related CWEs

Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

References (20)

https://git.kernel.org/stable/c/0e6521b0f93ff350434ed4ae61a250907e65d397

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/276af8efb05c8e47acf2738a5609dd72acfc703f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/584c2a9184a33a40fceee838f856de3cffa19be3

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/62c3ecd2833cff0eff4a82af4082c44ca8d2518a

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/a62168653774c36398d65846a98034436ee66d03

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/af25c5180b2b1796342798f6c56fcfd12f5035bd

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/b56a793f267679945d1fdb9a280013bd2d0ed7f9

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/dd199e5b759ffe349622a4b8fbcafc51fc51b1ec

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/e6378314bb920acb39013051fa65d8f9f8030430

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/0e6521b0f93ff350434ed4ae61a250907e65d397

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/276af8efb05c8e47acf2738a5609dd72acfc703f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/584c2a9184a33a40fceee838f856de3cffa19be3

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/62c3ecd2833cff0eff4a82af4082c44ca8d2518a

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/a62168653774c36398d65846a98034436ee66d03

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/af25c5180b2b1796342798f6c56fcfd12f5035bd

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/b56a793f267679945d1fdb9a280013bd2d0ed7f9

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/dd199e5b759ffe349622a4b8fbcafc51fc51b1ec

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/e6378314bb920acb39013051fa65d8f9f8030430

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

Timeline

No history available yet.