CVE-2024-49927

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: A vulnerability in the Linux kernel has been resolved, which previously caused the kernel to panic when interrupt allocation failed under certain conditions during runtime. The issue was observed when using failslab, resulting in a kernel panic with an error message indicating the failure to add an irq-pin. The problem was caused by a leftover from historic IO/APIC code that panicked during early boot when interrupt allocation failed. The fix involves removing the panic wrapper around the add pin to irq node() function and making the mp irqdomain alloc() function aware of the failure condition to handle it gracefully.

Recommendations: For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider disabling the mp irqdomain alloc() function or restricting its use until a patch is available. However, this is not a recommended long-term solution, and updating to a fixed version is the preferred resolution.