5.5

CVE-2024-35819

soc: fsl: qbman: Use raw spinlock for cgr_lock

In the Linux kernel, the following vulnerability has been resolved:

soc: fsl: qbman: Use raw spinlock for cgr_lock

smp_call_function always runs its callback in hard IRQ context, even on
PREEMPT_RT, where spinlocks can sleep. So we need to use a raw spinlock
for cgr_lock to ensure we aren't waiting on a sleeping task.

Although this bug has existed for a while, it was not apparent until
commit ef2a8d5478b9 ("net: dpaa: Adjust queue depth on rate change")
which invokes smp_call_function_single via qman_update_cgr_safe every
time a link goes up or down.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.9.92 < 4.10
LinuxLinux Kernel Version >= 4.14.32 < 4.15
LinuxLinux Kernel Version >= 4.15.15 < 4.16
LinuxLinux Kernel Version >= 4.16.1 < 4.19.312
LinuxLinux Kernel Version >= 4.20 < 5.4.274
LinuxLinux Kernel Version >= 5.5 < 5.10.215
LinuxLinux Kernel Version >= 5.11 < 5.15.154
LinuxLinux Kernel Version >= 5.16 < 6.1.84
LinuxLinux Kernel Version >= 6.2 < 6.6.24
LinuxLinux Kernel Version >= 6.7 < 6.7.12
LinuxLinux Kernel Version >= 6.8 < 6.8.3
LinuxLinux Kernel Version4.16 Update-
LinuxLinux Kernel Version4.16 Updaterc7
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.138
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Third Party Advisory
https://git.kernel.org/stable/c/2b3fede8225133671ce837c0d284804aa3bc7a02
Patch
https://git.kernel.org/stable/c/32edca2f03a6cc42c650ddc3ad83d086e3f365d1
Patch
https://git.kernel.org/stable/c/54d26adf64c04f186098b39dba86b86037084baa
Patch
https://git.kernel.org/stable/c/9a3ca8292ce9fdcce122706c28c3f07bc857fe5e
Patch
https://git.kernel.org/stable/c/cd53a8ae5aacb4ecd25088486dea1cd02e74b506
Patch
https://git.kernel.org/stable/c/d6b5aac451c9cc12e43ab7308e0e2ddc52c62c14
Patch
https://git.kernel.org/stable/c/f39d36b7540cf0088ed7ce2de2794f2aa237f6df
Patch
https://git.kernel.org/stable/c/fbec4e7fed89b579f2483041fabf9650fb0dd6bc
Patch
https://git.kernel.org/stable/c/ff50716b7d5b7985979a5b21163cd79fb3d21d59
Patch