PT-2024-32785 · Linux+8 · Linux Kernel+8
Published
2024-09-06
·
Updated
2025-09-29
·
CVE-2024-47739
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A vulnerability in the Linux kernel has been resolved. The issue occurs when submitting more than 2^32 padata objects to
padata do serial, causing the current sorting implementation to incorrectly sort padata objects with overflowed seq nr. This leads to a deadlock in the serialization process as padata find next cannot match padata->seq nr and pd->processed because the padata instance with overflowed seq nr will be selected next. To fix this, an unsigned integer wrap around is used to correctly sort padata objects in scenarios with integer overflow.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Integer Overflow
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu