Lucene search

GoogleOSV:CVE-2024-46692

HistorySep 13, 2024 - 6:15 a.m.

CVE-2024-46692

2024-09-1306:15:14

Google

osv.dev

linux

kernel

firmware

vulnerability

resolved

atomic call

deadlock

fast call

smc call

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

JSON

In the Linux kernel, the following vulnerability has been resolved:

firmware: qcom: scm: Mark get_wq_ctx() as atomic call

Currently get_wq_ctx() is wrongly configured as a standard call. When two
SMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to
resume the corresponding sleeping thread. But if get_wq_ctx() is
interrupted, goes to sleep and another SMC call is waiting to be allocated
a waitq context, it leads to a deadlock.

To avoid this get_wq_ctx() must be an atomic call and can’t be a standard
SMC call. Hence mark get_wq_ctx() as a fast call.

References

git.kernel.org/stable/c/9960085a3a82c58d3323c1c20b991db6045063b0

git.kernel.org/stable/c/cdf7efe4b02aa93813db0bf1ca596ad298ab6b06

git.kernel.org/stable/c/e40115c33c0d79c940545b6b12112aace7acd9f5

security-tracker.debian.org/tracker/CVE-2024-46692

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

JSON

Related for OSV:CVE-2024-46692