{ "containers": { "cna": { "providerMetadata": { "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038" }, "descriptions": [ { "lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npadata: use integer wrap around to prevent deadlock on seq_nr overflow\n\nWhen submitting more than 2^32 padata objects to padata_do_serial, the\ncurrent sorting implementation incorrectly sorts padata objects with\noverflowed seq_nr, causing them to be placed before existing objects in\nthe reorder list. This leads to a deadlock in the serialization process\nas padata_find_next cannot match padata->seq_nr and pd->processed\nbecause the padata instance with overflowed seq_nr will be selected\nnext.\n\nTo fix this, we use an unsigned integer wrap around to correctly sort\npadata objects in scenarios with integer overflow." } ], "affected": [ { "product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "kernel/padata.c" ], "versions": [ { "version": "bfde23ce200e", "lessThan": "46c4079460f4", "status": "affected", "versionType": "git" }, { "version": "bfde23ce200e", "lessThan": "72164d5b6489", "status": "affected", "versionType": "git" }, { "version": "bfde23ce200e", "lessThan": "ab205e1c3846", "status": "affected", "versionType": "git" }, { "version": "bfde23ce200e", "lessThan": "1b8cf11b3ca5", "status": "affected", "versionType": "git" }, { "version": "bfde23ce200e", "lessThan": "9e279e6c1f01", "status": "affected", "versionType": "git" }, { "version": "bfde23ce200e", "lessThan": "1bd712de96ad", "status": "affected", "versionType": "git" }, { "version": "bfde23ce200e", "lessThan": "9a22b2812393", "status": "affected", "versionType": "git" } ] }, { "product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "kernel/padata.c" ], "versions": [ { "version": "5.4", "status": "affected" }, { "version": "0", "lessThan": "5.4", "status": "unaffected", "versionType": "custom" }, { "version": "5.10.227", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "custom" }, { "version": "5.15.168", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "custom" }, { "version": "6.1.113", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "custom" }, { "version": "6.6.54", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "custom" }, { "version": "6.10.13", "lessThanOrEqual": "6.10.*", "status": "unaffected", "versionType": "custom" }, { "version": "6.11.2", "lessThanOrEqual": "6.11.*", "status": "unaffected", "versionType": "custom" }, { "version": "6.12-rc1", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix" } ] } ], "references": [ { "url": "https://git.kernel.org/stable/c/46c4079460f4dcaf445860679558eedef4e1bc91" }, { "url": "https://git.kernel.org/stable/c/72164d5b648951684b1a593996b37a6083c61d7d" }, { "url": "https://git.kernel.org/stable/c/ab205e1c3846326f162180e56825b4ba38ce9c30" }, { "url": "https://git.kernel.org/stable/c/1b8cf11b3ca593a8802a51802cd0c28c38501428" }, { "url": "https://git.kernel.org/stable/c/9e279e6c1f012b82628b89e1b9c65dbefa8ca25a" }, { "url": "https://git.kernel.org/stable/c/1bd712de96ad7167fe0d608e706cd60587579f16" }, { "url": "https://git.kernel.org/stable/c/9a22b2812393d93d84358a760c347c21939029a6" } ], "title": "padata: use integer wrap around to prevent deadlock on seq_nr overflow", "x_generator": { "engine": "bippy-c9c4e1df01b2" } } }, "cveMetadata": { "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038", "cveID": "CVE-2024-47739", "requesterUserId": "gregkh@kernel.org", "serial": "1", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.0" }