PT-2024-36899 · Linux+4 · Linux Kernel+4

Published

2024-11-11

·

Updated

2026-05-26

·

CVE-2024-56592

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74
Description The issue arises when a map is removed from the htab, potentially holding the last reference of the map. This triggers a lockdep warning due to the acquisition of map idr lock while holding a bucket lock. The warning is caused by bpf map fd put ptr() invoking bpf map free id() under a raw spin lock, which attempts to acquire map idr lock. To fix this, htab put fd value() is invoked after htab unlock bucket(), and free htab elem() is also deferred to link to-be-freed elements together.
Recommendations For Linux kernel versions prior to 6.6.74, update to version 6.6.74 or later to resolve the issue. As a temporary workaround, consider deferring the invocation of htab put fd value() and free htab elem() after htab unlock bucket() to prevent the lockdep warning.

Exploit

Fix

Weakness Enumeration

CWE-457

Related Identifiers

AZL-68315
BDU:2026-03103
CVE-2024-56592
ECHO-326E-D446-3140
MGASA-2025-0030
MGASA-2025-0032
OESA-2025-1078
OESA-2025-1079
OPENSUSE-SU-2025_0499-1
OPENSUSE-SU-2025_0557-1
OPENSUSE-SU-2025_0847-1
SUSE-SU-2025:0499-1
SUSE-SU-2025:0557-1
SUSE-SU-2025:0564-1
SUSE-SU-2025:0847-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_0499-1
SUSE-SU-2025_0557-1
SUSE-SU-2025_0847-1
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Debian
Linuxmint
Linux Kernel
Suse
Ubuntu