CVE-2024-54680

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74

Description A vulnerability in the Linux kernel has been resolved, which fixed a TCP timers deadlock after rmmod. The issue occurred due to manual setting of sk->sk net refcnt, which is technically incorrect and can cause a deadlock on tcp write timer(). The problem happens regardless of CONFIG NET NS REFCNT TRACKER and whether init net or other network namespaces are used. The vulnerability can be reproduced by running a reproducer from a specific commit and then removing the cifs module.

Recommendations For Linux kernel versions prior to 6.6.74, update to version 6.6.74 or later to resolve the issue. As a temporary workaround, consider avoiding the removal of the cifs module while the system is running to minimize the risk of exploitation. Restrict access to the vulnerable network namespaces to minimize the risk of exploitation. Avoid using the sk net refcnt variable manually, as it can cause a deadlock.

Note: The provided information does not include details about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.