5.5

CVE-2024-57807

scsi: megaraid_sas: Fix for a potential deadlock

In the Linux kernel, the following vulnerability has been resolved:

scsi: megaraid_sas: Fix for a potential deadlock

This fixes a 'possible circular locking dependency detected' warning
      CPU0                    CPU1
      ----                    ----
 lock(&instance->reset_mutex);
                              lock(&shost->scan_mutex);
                              lock(&instance->reset_mutex);
 lock(&shost->scan_mutex);

Fix this by temporarily releasing the reset_mutex.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 5.4.289
LinuxLinux Kernel Version >= 5.5 < 5.10.233
LinuxLinux Kernel Version >= 5.11 < 5.15.176
LinuxLinux Kernel Version >= 5.16 < 6.1.123
LinuxLinux Kernel Version >= 6.2 < 6.6.69
LinuxLinux Kernel Version >= 6.7 < 6.12.8
LinuxLinux Kernel Version6.13 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.17% 0.067
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://git.kernel.org/stable/c/3c654998a3e8167a58b6c6fede545fe400a4b554
Patch
https://git.kernel.org/stable/c/466ca39dbf5d0ba71c16b15c27478a9c7d4022a8
Patch
https://git.kernel.org/stable/c/50740f4dc78b41dec7c8e39772619d5ba841ddd7
Patch
https://git.kernel.org/stable/c/78afb9bfad00c4aa58a424111d7edbcab9452f2b
Patch
https://git.kernel.org/stable/c/edadc693bfcc0f1ea08b8fa041c9361fd042410d
Patch
https://git.kernel.org/stable/c/f36d024bd15ed356a80dda3ddc46d0a62aa55815
Patch
https://git.kernel.org/stable/c/f50783148ec98a1d38b87422e2ceaf2380b7b606
Patch
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html