CVE-2024-46829

rtmutex: Drop rt_mutex::wait_lock before scheduling

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

rtmutex: Drop rt_mutex::wait_lock before scheduling

rt_mutex_handle_deadlock() is called with rt_mutex::wait_lock held. In the
good case it returns with the lock held and in the deadlock case it emits a
warning and goes into an endless scheduling loop with the lock held, which
triggers the 'scheduling in atomic' warning.

Unlock rt_mutex::wait_lock in the dead lock case before issuing the warning
and dropping into the schedule for ever loop.

[ tglx: Moved unlock before the WARN(), removed the pointless comment,
massaged changelog, added Fixes tag ]

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-09-11 CVE Reserved
2024-09-27 CVE Published
2024-09-27 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (15)

URL	Tag	Source
https://git.kernel.org/stable/c/3d5c9340d1949733eb37616abd15db36aef9a57c	Vuln. Introduced
https://git.kernel.org/stable/c/95f9aded9436aa3ce714aeff3f45fcc1431df7d2	Vuln. Introduced
https://git.kernel.org/stable/c/ea018da95368adfb700689bd9842714f7c3db665	Vuln. Introduced
https://git.kernel.org/stable/c/1201613a70dd34bd347ba2970919b3f1d5fbfb4a	Vuln. Introduced
https://git.kernel.org/stable/c/a2e64fcdc83c645813f7b93e4df291841ba7c625	Vuln. Introduced
https://git.kernel.org/stable/c/fb52f40e085ef4074f1335672cd62c1f832af13b	Vuln. Introduced
https://git.kernel.org/stable/c/2b1f3807ed9cafb59c956ce76a05d25e67103f2e	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/432efdbe7da5ecfcbc0c2180cfdbab1441752a38	2024-09-12
https://git.kernel.org/stable/c/6a976e9a47e8e5b326de671811561cab12e6fb1f	2024-09-12
https://git.kernel.org/stable/c/1401da1486dc1cdbef6025fd74a3977df3a3e5d0	2024-09-12
https://git.kernel.org/stable/c/93f44655472d9cd418293d328f9d141ca234ad83	2024-09-12
https://git.kernel.org/stable/c/a92d81c9efec9280681c27a2c0a963fd0f1338e0	2024-09-12
https://git.kernel.org/stable/c/85f03ca98e07cd0786738b56ae73740bce0ac27f	2024-09-12
https://git.kernel.org/stable/c/f13b5afc5c4889569d84c3011ce449f61fccfb28	2024-09-12
https://git.kernel.org/stable/c/d33d26036a0274b472299d7dcdaa5fb34329f91b	2024-08-15

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 4.19.322 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 4.19.322"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 5.4.284 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 5.4.284"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 5.10.226 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 5.10.226"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 5.15.167 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 5.15.167"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 6.1.110 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 6.1.110"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 6.6.51 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 6.6.51"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 6.10.10 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 6.10.10"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.16 < 6.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.16 < 6.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.2.61 Search vendor "Linux" for product "Linux Kernel" and version "3.2.61"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.4.99 Search vendor "Linux" for product "Linux Kernel" and version "3.4.99"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.10.49 Search vendor "Linux" for product "Linux Kernel" and version "3.10.49"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.12.25 Search vendor "Linux" for product "Linux Kernel" and version "3.12.25"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.14.10 Search vendor "Linux" for product "Linux Kernel" and version "3.14.10"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.15.3 Search vendor "Linux" for product "Linux Kernel" and version "3.15.3"		en		Affected