THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-38384

blk-cgroup: fix list corruption from reorder of WRITE ->lqueued

Assigner:Linux
Reserved:2024-06-21
Published:2024-06-24
Updated:2024-06-24

Description

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix list corruption from reorder of WRITE ->lqueued __blkcg_rstat_flush() can be run anytime, especially when blk_cgroup_bio_start is being executed. If WRITE of `->lqueued` is re-ordered with READ of 'bisc->lnode.next' in the loop of __blkcg_rstat_flush(), `next_bisc` can be assigned with one stat instance being added in blk_cgroup_bio_start(), then the local list in __blkcg_rstat_flush() could be corrupted. Fix the issue by adding one barrier.

Product status

Default status
unaffected

3b8cc6298724 before 714e59b5456e
affected

3b8cc6298724 before 785298ab6b80
affected

3b8cc6298724 before d0aac2363549
affected

Default status
affected

6.2
affected

Any version before 6.2
unaffected

6.6.33
unaffected

6.9.4
unaffected

6.10-rc1
unaffected

References

https://git.kernel.org/stable/c/714e59b5456e4d6e4295a9968c564abe193f461c

https://git.kernel.org/stable/c/785298ab6b802afa75089239266b6bbea590809c

https://git.kernel.org/stable/c/d0aac2363549e12cc79b8e285f13d5a9f42fd08e

cve.org CVE-2024-38384

nvd.nist.gov CVE-2024-38384

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-38384
Find us on
Data Privacy
Terms of Use
Logo Silicon Valley Europe
Logo BSI Allianz für Cyber-Sicherheit