5.5

CVE-2024-35805

dm snapshot: fix lockup in dm_exception_table_exit

In the Linux kernel, the following vulnerability has been resolved:

dm snapshot: fix lockup in dm_exception_table_exit

There was reported lockup when we exit a snapshot with many exceptions.
Fix this by adding "cond_resched" to the loop that frees the exceptions.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 5.4.274
LinuxLinux Kernel Version >= 5.5 < 5.10.215
LinuxLinux Kernel Version >= 5.11 < 5.15.154
LinuxLinux Kernel Version >= 5.16 < 6.1.84
LinuxLinux Kernel Version >= 6.2 < 6.6.24
LinuxLinux Kernel Version >= 6.7 < 6.7.12
LinuxLinux Kernel Version >= 6.8 < 6.8.3
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.076
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Third Party Advisory
https://git.kernel.org/stable/c/116562e804ffc9dc600adab6326dde31d72262c7
Patch
https://git.kernel.org/stable/c/3d47eb405781cc5127deca9a14e24b27696087a1
Patch
https://git.kernel.org/stable/c/5f4ad4d0b0943296287313db60b3f84df4aad683
Patch
https://git.kernel.org/stable/c/6e7132ed3c07bd8a6ce3db4bb307ef2852b322dc
Patch
https://git.kernel.org/stable/c/9759ff196e7d248bcf8386a7451d6ff8537a7d9c
Patch
https://git.kernel.org/stable/c/e50f83061ac250f90710757a3e51b70a200835e2
Patch
https://git.kernel.org/stable/c/e7d4cff57c3c43fdd72342c78d4138f509c7416e
Patch
https://git.kernel.org/stable/c/fa5c055800a7fd49a36bbb52593aca4ea986a366
Patch
https://cert-portal.siemens.com/productcert/html/ssa-265688.html