PT-2024-29184 · Linux+4 · Linux Kernel+4

Light Hsieh

Published

2024-04-03

Updated

2026-03-14

CVE-2024-40969

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Linux kernel's f2fs file system, where shutdown does not check the error of thaw super due to readonly, causing a deadlock. The deadlock occurs when f2fs ioc shutdown is called with F2FS GOING DOWN FULLSYNC, leading to a series of function calls that result in a wait for kthread stop(discard thread). Technical details about the issue include the involvement of functions such as f2fs stop checkpoint, f2fs handle critical error, and thaw super locked.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-833CWE-667

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-13979

ALT-PU-2024-14046

AZL-48954

BDU:2025-03029

CVE-2024-40969

ECHO-3ABF-8777-10A0

OESA-2024-2076

USN-6999-1

USN-6999-2

USN-7004-1

USN-7005-1

USN-7005-2

USN-7008-1

USN-7029-1

Affected Products

Alt Linux

Debian

Linuxmint

Linux Kernel

Ubuntu

PT-2024-29184 · Linux+4 · Linux Kernel+4

CVE-2024-40969

Weakness Enumeration

Related Identifiers

Affected Products

References · 401