CVE-2024-46704

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A data race issue has been resolved in the Linux kernel's workqueue. The issue occurred when flushing a work item for cancellation, and the flush work() function knew it exclusively owned the work item through its PENDING bit. A read of @work->data was added to determine whether to use busy wait for BH work items that are being canceled. However, the read was done before testing @from cancel, which could trigger KCSAN data race detection spuriously. The code has been reorganized to test @from cancel before accessing @work->data. This issue does not require functional changes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.