CVE-2024-35793

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the debugfs feature in the Linux kernel, where a logic error in the wait/cancellation handling during remove operations can cause deadlocks. Specifically, when the refcount hits zero, the completion can be finished without waiting, but if it doesn't, all cancellations need to be triggered. However, the current implementation can never enter the loop to trigger these cancellations. This problem occurs even when debugfs cancellations are used, and it happens during concurrent debugfs remove operations while files are being accessed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.