CVE-2024-44995

2024-09-0422:16:12

redhat.com

access.redhat.com

linux kernel

net

hns3

deadlock

tc config

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix a deadlock problem when config TC during resetting When config TC during the reset process, may cause a deadlock, the flow is as below: pf reset start │ ▼ … setup tc │ │ ▼ ▼ DOWN: napi_disable() napi_disable()(skip) │ │ │ ▼ ▼ … … │ │ ▼ │ napi_enable() │ ▼ UINIT: netif_napi_del() │ ▼ … │ ▼ INIT: netif_napi_add() │ ▼ … global reset start │ │ ▼ ▼ UP: napi_enable()(skip) … │ │ ▼ ▼ … napi_disable() In reset process, the driver will DOWN the port and then UINIT, in this case, the setup tc process will UP the port before UINIT, so cause the problem. Adds a DOWN process in UINIT to fix it.