Linux · Linux Kernel · CVE-2024-40922
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The vulnerability is related to the io uring/rsrc component of the Linux kernel, where the function io rsrc ref quiesce() locks a mutex while not in the TASK RUNNING state. This issue arises due to the failure to restore the state after io run task work sig() and attempts to break out of the waiting loop. The vulnerability can lead to a denial of service.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.