CVE-2024-40966

2024-07-1213:15:18

Debian Security Bug Tracker

security-tracker.debian.org

linux

kernel

vulnerability

tty

patch

rejection

AI Score

Confidence

High

EPSS

Percentile

15.9%

JSON

In the Linux kernel, the following vulnerability has been resolved: tty: add the option to have a tty reject a new ldisc … and use it to limit the virtual terminals to just N_TTY. They are kind of special, and in particular, the “con_write()” routine violates the “writes cannot sleep” rule that some ldiscs rely on. This avoids the BUG: sleeping function called from invalid context at kernel/printk/printk.c:2659 when N_GSM has been attached to a virtual console, and gsmld_write() calls con_write() while holding a spinlock, and con_write() then tries to get the console lock.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 6.1.99-1linux_6.1.99-1_all.deb
Debian11alllinux<= 5.10.223-1linux_5.10.223-1_all.deb
Debian999alllinux< 6.9.7-1linux_6.9.7-1_all.deb
Debian13alllinux< 6.9.7-1linux_6.9.7-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 6.1.99-1	linux_6.1.99-1_all.deb
Debian	11	all	linux	<= 5.10.223-1	linux_5.10.223-1_all.deb
Debian	999	all	linux	< 6.9.7-1	linux_6.9.7-1_all.deb
Debian	13	all	linux	< 6.9.7-1	linux_6.9.7-1_all.deb