CVE-2024-26880

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.8.0-rc6

Description The vulnerability is caused by the fact that the postsuspend and resume methods were not paired correctly, resulting in list corruption. This occurs when there are two consecutive calls to the origin postsuspend function, with the second call attempting to remove the "hash list" entry from a list that was already removed by the first call. The fix involves modifying the dm internal resume function to call the preresume and resume methods of the table's targets. If a preresume method of some target fails, the DMF SUSPENDED flag is set and normal suspend is faked to avoid a kernel crash.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, versions 6.8.0-rc6 and later should be used. If updating is not possible, consider temporarily disabling the dm internal resume function or restricting its use to minimize the risk of exploitation. However, this is not a recommended long-term solution, as it may cause other issues.

At the moment, there is no information about other versions that contain a fix for this vulnerability.