5.5

CVE-2024-46829

rtmutex: Drop rt_mutex::wait_lock before scheduling

In the Linux kernel, the following vulnerability has been resolved:

rtmutex: Drop rt_mutex::wait_lock before scheduling

rt_mutex_handle_deadlock() is called with rt_mutex::wait_lock held.  In the
good case it returns with the lock held and in the deadlock case it emits a
warning and goes into an endless scheduling loop with the lock held, which
triggers the 'scheduling in atomic' warning.

Unlock rt_mutex::wait_lock in the dead lock case before issuing the warning
and dropping into the schedule for ever loop.

[ tglx: Moved unlock before the WARN(), removed the pointless comment,
  	massaged changelog, added Fixes tag ]
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.2.61 < 3.3
LinuxLinux Kernel Version >= 3.4.99 < 3.5
LinuxLinux Kernel Version >= 3.10.49 < 3.11
LinuxLinux Kernel Version >= 3.12.25 < 3.13
LinuxLinux Kernel Version >= 3.14.10 < 3.15
LinuxLinux Kernel Version >= 3.15.3 < 3.16
LinuxLinux Kernel Version >= 3.16 < 4.19.322
LinuxLinux Kernel Version >= 4.20 < 5.4.284
LinuxLinux Kernel Version >= 5.5 < 5.10.226
LinuxLinux Kernel Version >= 5.11 < 5.15.167
LinuxLinux Kernel Version >= 5.16 < 6.1.110
LinuxLinux Kernel Version >= 6.2 < 6.6.51
LinuxLinux Kernel Version >= 6.7 < 6.10.10
LinuxLinux Kernel Version6.11 Updaterc1
LinuxLinux Kernel Version6.11 Updaterc2
LinuxLinux Kernel Version6.11 Updaterc3
LinuxLinux Kernel Version6.11 Updaterc4
LinuxLinux Kernel Version6.11 Updaterc5
LinuxLinux Kernel Version6.11 Updaterc6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.2% 0.095
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://git.kernel.org/stable/c/1401da1486dc1cdbef6025fd74a3977df3a3e5d0
Patch
https://git.kernel.org/stable/c/432efdbe7da5ecfcbc0c2180cfdbab1441752a38
Patch
https://git.kernel.org/stable/c/6a976e9a47e8e5b326de671811561cab12e6fb1f
Patch
https://git.kernel.org/stable/c/85f03ca98e07cd0786738b56ae73740bce0ac27f
Patch
https://git.kernel.org/stable/c/93f44655472d9cd418293d328f9d141ca234ad83
Patch
https://git.kernel.org/stable/c/a92d81c9efec9280681c27a2c0a963fd0f1338e0
Patch
https://git.kernel.org/stable/c/d33d26036a0274b472299d7dcdaa5fb34329f91b
Patch
https://git.kernel.org/stable/c/f13b5afc5c4889569d84c3011ce449f61fccfb28
Patch
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html