CVE-2024-40966

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises from the con write() routine violating the "writes cannot sleep" rule that some line disciplines (ldiscs) rely on. This occurs when N GSM is attached to a virtual console, and gsmld write() calls con write() while holding a spinlock, causing con write() to attempt to acquire the console lock. This results in a sleeping function being called from an invalid context, leading to a bug at kernel/printk/printk.c:2659. The solution involves adding an option for a tty to reject a new ldisc and limiting virtual terminals to just N TTY.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-99

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

AZL-68214

BDU:2025-08058

CVE-2024-40966

DLA-4008-1

DSA-5731-1

INFSA-2024_9315

OESA-2024-2028

OESA-2024-2029

OESA-2024-2031

OESA-2024-2076

OPENSUSE-SU-2024_2947-1

RHSA-2024:9315

RHSA-2024_9315

SUSE-SU-2024:2802-1

SUSE-SU-2024:2892-1

SUSE-SU-2024:2894-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2901-1

SUSE-SU-2024:2939-1

SUSE-SU-2024:2940-1

SUSE-SU-2024:2947-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

USN-6999-1

USN-6999-2

USN-7004-1

USN-7005-1

USN-7005-2

USN-7008-1

USN-7029-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

CVE-2024-40966

Weakness Enumeration

Related Identifiers

Affected Products

References · 3098