5.5

CVE-2024-38780

dma-buf/sw-sync: don't enable IRQ from sync_print_obj()

In the Linux kernel, the following vulnerability has been resolved:

dma-buf/sw-sync: don't enable IRQ from sync_print_obj()

Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from
known context") by error replaced spin_unlock_irqrestore() with
spin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite
sync_print_obj() is called from sync_debugfs_show(), lockdep complains
inconsistent lock state warning.

Use plain spin_{lock,unlock}() for sync_print_obj(), for
sync_debugfs_show() is already using spin_{lock,unlock}_irq().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.14
LinuxLinux Kernel Version >= 4.19 < 4.19.316
LinuxLinux Kernel Version >= 5.4 < 5.4.278
LinuxLinux Kernel Version >= 5.10 < 5.10.219
LinuxLinux Kernel Version >= 5.15 < 5.15.161
LinuxLinux Kernel Version >= 6.1 < 6.1.93
LinuxLinux Kernel Version >= 6.6 < 6.6.33
LinuxLinux Kernel Version >= 6.9 < 6.9.4
LinuxLinux Kernel Version6.10.0 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.19% 0.084
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
https://git.kernel.org/stable/c/165b25e3ee9333f7b04f8db43895beacb51582ed
Patch
Mailing List
https://git.kernel.org/stable/c/1ff116f68560a25656933d5a18e7619cb6773d8a
Patch
Mailing List
https://git.kernel.org/stable/c/242b30466879e6defa521573c27e12018276c33a
Patch
Mailing List
https://git.kernel.org/stable/c/8a283cdfc8beeb14024387a925247b563d614e1e
Patch
Mailing List
https://git.kernel.org/stable/c/9d75fab2c14a25553a1664586ed122c316bd1878
Patch
Mailing List
https://git.kernel.org/stable/c/a4ee78244445ab73af22bfc5a5fc543963b25aef
Patch
Mailing List
https://git.kernel.org/stable/c/ae6fc4e6a3322f6d1c8ff59150d8469487a73dd8
Patch
Mailing List
https://git.kernel.org/stable/c/b794918961516f667b0c745aebdfebbb8a98df39
Patch
Mailing List
https://cert-portal.siemens.com/productcert/html/ssa-398330.html
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
https://cert-portal.siemens.com/productcert/html/ssa-613116.html