CVE-2024-56690

crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY

Since commit 8f4f68e788c3 ("crypto: pcrypt - Fix hungtask for
PADATA_RESET"), the pcrypt encryption and decryption operations return
-EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is
generated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns
-EAGAIN, the unnecessary panic will occur when panic_on_warn set 1.
Fix this issue by calling crypto layer directly without parallelization
in that case.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-12-27 CVE Reserved
2024-12-28 CVE Published
2024-12-28 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (18)

URL	Tag	Source
https://git.kernel.org/stable/c/039fec48e062504f14845124a1a25eb199b2ddc0	Vuln. Introduced
https://git.kernel.org/stable/c/c9c1334697301c10e6918d747ed38abfbc0c96e7	Vuln. Introduced
https://git.kernel.org/stable/c/e97bf4ada7dddacd184c3e196bd063b0dc71b41d	Vuln. Introduced
https://git.kernel.org/stable/c/546c1796ad1ed0d87dab3c4b5156d75819be2316	Vuln. Introduced
https://git.kernel.org/stable/c/c55fc098fd9d2dca475b82d00ffbcaf97879d77e	Vuln. Introduced
https://git.kernel.org/stable/c/372636debe852913529b1716f44addd94fff2d28	Vuln. Introduced
https://git.kernel.org/stable/c/8f4f68e788c3a7a696546291258bfa5fdb215523	Vuln. Introduced
https://git.kernel.org/stable/c/fb2d3a50a8f29a3c66682bb426144f40e32ab818	Vuln. Introduced
https://git.kernel.org/stable/c/e134f3aba98e6c801a693f540912c2d493718ddf	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/dd8bf8eb5beba1e7c3b11a9a5a58ccbf345a69e6	2024-12-05
https://git.kernel.org/stable/c/fca8aed12218f96b38e374ff264d78ea1fbd23cc	2024-12-14
https://git.kernel.org/stable/c/a92ccd3618e42333ac6f150ecdac14dca298bc7a	2024-12-14
https://git.kernel.org/stable/c/96001f52ae8c70e2c736d3e1e5dc53d5b521e5ca	2024-12-14
https://git.kernel.org/stable/c/92834692a539b5b7f409e467a14667d64713b732	2024-12-14
https://git.kernel.org/stable/c/5edae7a9a35606017ee6e05911c290acee9fee5a	2024-12-09
https://git.kernel.org/stable/c/a8e0074ffb38c9a5964a221bb998034d016c93a2	2024-12-05
https://git.kernel.org/stable/c/7ddab756f2de5b7b43c122ebebdf37f400fb2b6f	2024-12-05
https://git.kernel.org/stable/c/662f2f13e66d3883b9238b0b96b17886179e60e2	2024-10-28

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.300 < 4.19.325 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.300 < 4.19.325"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.262 < 5.4.287 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.262 < 5.4.287"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.202 < 5.10.231 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.202 < 5.10.231"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.140 < 5.15.174 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.140 < 5.15.174"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.64 < 6.1.120 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.64 < 6.1.120"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6.3 < 6.6.64 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6.3 < 6.6.64"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7 < 6.11.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7 < 6.11.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7 < 6.12.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7 < 6.12.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7 < 6.13-rc1 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7 < 6.13-rc1"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.14.331 Search vendor "Linux" for product "Linux Kernel" and version "4.14.331"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.5.13 Search vendor "Linux" for product "Linux Kernel" and version "6.5.13"		en		Affected