PT-2025-3671 · Linux+7 · Linux Kernel+7
Marek Szyprowski
·
Published
2025-01-21
·
Updated
2025-10-03
·
CVE-2024-57946
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.74
Description
The issue is related to the virtio-blk component in the Linux kernel, where keeping the queue frozen during system suspend can cause deadlocks. The block layer's queue freeze can be handy but also easy to cause deadlocks, such as when calling into
bio queue enter() if the queue is frozen in the current context. The motivation is to drain in-flight IOs before suspending, which can be done by calling freeze and unfreeze, restoring the previous behavior by keeping the queue quiesced during suspend.Recommendations
For Linux kernel versions prior to 6.6.74, update to version 6.6.74 or later to resolve the issue. As a temporary workaround, consider modifying the virtio-blk's PM callbacks to restore the previous behavior by keeping the queue quiesced during suspend, instead of keeping it frozen.
Exploit
Fix
Improper Locking
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu