CVE-2024-50006

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: A possible deadlock in jbd2 log wait commit has been reported through fuzzing. This issue is triggered when an EXT4 IOC MIGRATE ioctl is set to require synchronous updates because the file descriptor is opened with O SYNC. The jbd2 journal stop() function may call jbd2 might wait for commit(), potentially causing a deadlock if the EXT4 IOC MIGRATE call races with a write(2) system call. This problem only arises when CONFIG PROVE LOCKING is enabled, causing the jbd2 might wait for commit macro to lock jbd2 handle in the jbd2 journal stop function while i data sem is locked, triggering lockdep because the jbd2 journal start function might also lock the same jbd2 handle simultaneously.

Recommendations: Update to Linux kernel version 6.6.58 or later to resolve the issue. As a temporary workaround, consider disabling the CONFIG PROVE LOCKING configuration to prevent the deadlock, until a patch is available.