CVE-2024-57807

Опубликовано: 11 янв. 2025

Источник: redhat

CVSS3: 4.1

Описание

In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix for a potential deadlock This fixes a 'possible circular locking dependency detected' warning CPU0 CPU1

lock(&instance->reset_mutex); lock(&shost->scan_mutex); lock(&instance->reset_mutex); lock(&shost->scan_mutex); Fix this by temporarily releasing the reset_mutex.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 9	kernel	Fix deferred
Red Hat Enterprise Linux 9	kernel-rt	Fix deferred
Red Hat Enterprise Linux 8	kernel-rt	Fixed	RHSA-2025:2474	10.03.2025
Red Hat Enterprise Linux 8	kernel	Fixed	RHSA-2025:2473	10.03.2025

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-667

https://bugzilla.redhat.com/show_bug.cgi?id=2337098kernel: scsi: megaraid_sas: Fix for a potential deadlock

4.1 Medium

CVSS3

Связанные уязвимости

CVE-2024-57807

CVSS3: 5.5

ubuntu

5 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix for a potential deadlock This fixes a 'possible circular locking dependency detected' warning CPU0 CPU1 ---- ---- lock(&instance->reset_mutex); lock(&shost->scan_mutex); lock(&instance->reset_mutex); lock(&shost->scan_mutex); Fix this by temporarily releasing the reset_mutex.