PT-2024-30713 · Linux+7 · Linux Kernel+7

Li Nan

Published

2024-06-10

Updated

2025-09-29

CVE-2024-43855

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A deadlock vulnerability has been resolved in the Linux kernel. The issue occurs when the kernel is being suspended while a flush bio is in progress, causing a complex deadlock scenario. The root cause is the non-atomic increment and decrement of active io during the flush process. To fix the issue, the kernel now ensures that active io is only incremented and decremented once during the entire flush process. Additionally, a WARN ON has been added to prevent future modifications from introducing issues.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476CWE-667

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-11524

ALT-PU-2024-11855

ALT-PU-2024-11863

ALT-PU-2024-13121

ALT-PU-2024-13979

ALT-PU-2024-14046

AZL-47968

AZL-48003

BDU:2025-01716

CVE-2024-43855

DLA-4008-1

INFSA-2025_3506

MGASA-2024-0309

MGASA-2024-0310

OESA-2024-2124

OESA-2024-2255

OESA-2024-2257

OESA-2024-2258

RHSA-2025:3506

RHSA-2025_3506

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3383-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

USN-7089-1

USN-7089-2

USN-7089-3

USN-7089-4

USN-7089-5

USN-7089-6

USN-7089-7

USN-7090-1

USN-7095-1

USN-7156-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

PT-2024-30713 · Linux+7 · Linux Kernel+7

CVE-2024-43855

Weakness Enumeration

Related Identifiers

Affected Products

References · 1756