PT-2024-33915 · Linux+11 · Linux Kernel+11

Omar Sandoval

Published

2024-10-28

Updated

2025-10-03

CVE-2024-50082

CVSS v3.1

4.7

Medium

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.12.0-rc3-00013-geca631b8fe80

Description: A race condition exists between rq qos wait() and rq qos wake function() in the Linux kernel, leading to a crash. The issue occurs when rq qos wake function() deletes the waitqueue entry and then calls wake up process(), but rq qos wait() has already returned and clobbered the data->task pointer. This results in wake up process() being called with an invalid pointer, causing a crash. The estimated number of potentially affected devices is not specified.

Recommendations: To resolve the issue, update the Linux kernel to a version that includes the fix for the blk-rq-qos crash. As a temporary workaround, consider disabling the rq qos wake function() function until a patch is available. Restrict access to the vulnerable rq qos wait() function to minimize the risk of exploitation. Avoid using the data->task pointer in the affected code path until the issue is resolved.

Exploit

Fix

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALSA-2024:10943

ALSA-2024:10944

ALSA-2024_10943

ALSA-2024_10944

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2024-14505

ALT-PU-2024-15251

ALT-PU-2024-15739

ALT-PU-2024-16172

ALT-PU-2024-17211

ALT-PU-2025-12647

AZL-51930

AZL-51954

BDU:2025-03368

CESA-2024_10943

CESA-2024_10944

CVE-2024-50082

DLA-4008-1

DLA-4075-1

INFSA-2024_10943

INFSA-2024_10944

INFSA-2025_6966

OESA-2024-2423

OESA-2024-2424

OESA-2024-2425

OESA-2024-2426

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2024_4314-1

OPENSUSE-SU-2024_4315-1

OPENSUSE-SU-2024_4316-1

OPENSUSE-SU-2024_4376-1

OPENSUSE-SU-2025:14705-1

RHSA-2024:10943

RHSA-2024:10944

RHSA-2024_10943

RHSA-2024_10944

RHSA-2025:11810

RHSA-2025:6966

RHSA-2025_6966

RLSA-2024:10943

RLSA-2024:10944

SUSE-SU-2024:4314-1

SUSE-SU-2024:4315-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4364-1

SUSE-SU-2024:4376-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

SUSE-SU-2026:2068-1

USN-7276-1

USN-7277-1

USN-7288-1

USN-7288-2

USN-7289-1

USN-7289-2

USN-7289-3

USN-7289-4

USN-7291-1

USN-7293-1

USN-7294-1

USN-7294-2

USN-7294-3

USN-7294-4

USN-7295-1

USN-7305-1

USN-7308-1

USN-7310-1

USN-7331-1

USN-7383-1

USN-7383-2

USN-7384-1

USN-7384-2

USN-7385-1

USN-7386-1

USN-7388-1

USN-7389-1

USN-7390-1

USN-7393-1

USN-7401-1

USN-7403-1

USN-7413-1

USN-7451-1

USN-7458-1

USN-7468-1

USN-7523-1

USN-7524-1

USN-7539-1

USN-7540-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2024-33915 · Linux+11 · Linux Kernel+11

CVE-2024-50082

Weakness Enumeration

Related Identifiers

Affected Products

References · 2964