CVE-2024-36944 Reapply "drm/qxl: simplify qxl_fence_wait"

🗓️ 30 May 2024 15:35:42Reported by LinuxType

Linux kernel vulnerability resolved by reverting "drm/qxl: simplify qxl_fence_wait" commit. Steve's VMs hung on boot due to circular locking dependency between console_owner and worker pool locking

Reporter	Title	Published	Views	Family All 132
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-643)	24 Jun 202400:00	–	nessus
Tenable Nessus	MiracleLinux 9 : kernel-5.14.0-503.11.1.el9_5 (AXSA:2025-9528:03)	20 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 9 : kernel (ELSA-2024-9315)	19 Nov 202400:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2024-5.0-0305	24 Jul 202400:00	–	nessus
Tenable Nessus	RHEL 9 : kernel (RHSA-2024:9315)	12 Nov 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2008-1)	13 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2019-1)	14 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2135-1)	22 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2190-1)	26 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2802-1)	8 Aug 202400:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/qxl/qxl_release.c",
      "include/linux/dma-fence.h"
    ],
    "versions": [
      {
        "version": "8d278fc34cdd8a44e995fa93dfd31d619a2e1fe6",
        "lessThan": "4a89ac4b0921c4ea21eb1b4cf3a469a91bacfcea",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "84fb60063509e462e39c0e097c7d6dbb71c95967",
        "lessThan": "b548c53bc3ab83dc6fc86c8e840f013b2032267a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "42cbe04a5c77da74fb7161b0ae63f1f6e105d633",
        "lessThan": "148ed8b4d64f94ab079c8f0d88c3f444db97ba97",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "13ab5db42a593f9904acc39055ee3ae75963fc88",
        "lessThan": "3dfe35d8683daf9ba69278643efbabe40000bbf6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "07ed11afb68d94eadd4ffc082b97c2331307c5ea",
        "lessThan": "3628e0383dd349f02f882e612ab6184e4bb3dc10",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/qxl/qxl_release.c",
      "include/linux/dma-fence.h"
    ],
    "versions": [
      {
        "version": "5.15.156",
        "lessThan": "5.15.159",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.1.87",
        "lessThan": "6.1.91",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.6.28",
        "lessThan": "6.6.31",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.8.7",
        "lessThan": "6.8.10",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/148ed8b4d64f94ab079c8f0d88c3f444db97ba97
git	www.git.kernel.org/stable/c/3dfe35d8683daf9ba69278643efbabe40000bbf6
git	www.git.kernel.org/stable/c/4a89ac4b0921c4ea21eb1b4cf3a469a91bacfcea
git	www.git.kernel.org/stable/c/b548c53bc3ab83dc6fc86c8e840f013b2032267a
git	www.git.kernel.org/stable/c/3628e0383dd349f02f882e612ab6184e4bb3dc10

11 May 2026 20:17Current

6.4Medium risk

Vulners AI Score6.4

EPSS0.00164