PT-2024-36918 · Linux+6 · Linux Kernel+6
Ran Xiaokai
·
Published
2024-10-01
·
Updated
2025-05-26
·
CVE-2024-56610
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.74
Description
A vulnerability in the Linux kernel has been resolved. The issue is related to the KCSAN reporting logic, which checks if it should filter a report on a detected data race. The report filterlist lock spinlock, which protects this list, may sleep on RT kernels. To fix this, the report filterlist lock has been converted to a raw spinlock. This change requires careful memory allocation for the filter list, which can be done via KCSAN's debugfs interface.
Recommendations
To resolve the issue, update to Linux kernel version 6.6.74 or later. As a temporary workaround, consider disabling the KCSAN debugfs interface to minimize the risk of exploitation. Restrict access to the debugfs interface to prevent concurrent modification of the filter list. Avoid using the report filterlist lock spinlock in any context where it may sleep on RT kernels.
Exploit
Fix
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu