42 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-49322
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tracing: Fix sleeping function called from invalid context on RT kernel When setting bootparams=traceevent=initcall:initcallstart tpprintk=1 in the cmdline, the...
CVE-2025-21767
In the Linux kernel, the following vulnerability has been resolved: clocksource: Use migratedisable to avoid calling getrandomu32 in atomic context The following bug report happened with a PREEMPTRT kernel: BUG: sleeping function called from invalid context at kernel/locking/spinlockrt.c:48...
CVE-2022-49322 tracing: Fix sleeping function called from invalid context on RT kernel
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix sleeping function called from invalid context on RT kernel When setting bootparams="traceevent=initcall:initcallstart tpprintk=1" in the cmdline, the outputprintk was called, and the spinlockirqsave was called in the...
CVE-2024-57939
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-56610
In the Linux kernel, the following vulnerability has been resolved: kcsan: Turn reportfilterlistlock into a rawspinlock Ran Xiaokai reports that with a KCSAN-enabled PREEMPTRT kernel, we can see splats like: | BUG: sleeping function called from invalid context at kernel/locking/spinlockrt.c:48 |...
CVE-2024-56585
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix sleeping in atomic context for PREEMPTRT Commit bab1c299f3945ffe79 "LoongArch: Fix sleeping in atomic context in setuptlbhandler" changes the gfp flag from GFPKERNEL to GFPATOMIC for allocpagesnode. However, for...
CVE-2024-56585
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix sleeping in atomic context for PREEMPTRT Commit bab1c299f3945ffe79 "LoongArch: Fix sleeping in atomic context in setuptlbhandler" changes the gfp flag from GFPKERNEL to GFPATOMIC for allocpagesnode. However, for...
CVE-2024-56610 kcsan: Turn report_filterlist_lock into a raw_spinlock
In the Linux kernel, the following vulnerability has been resolved: kcsan: Turn reportfilterlistlock into a rawspinlock Ran Xiaokai reports that with a KCSAN-enabled PREEMPTRT kernel, we can see splats like: | BUG: sleeping function called from invalid context at kernel/locking/spinlockrt.c:48 |...
CVE-2024-56610
CVE-2024-56610 is a Linux kernel issue where KCSAN’s report_filterlist_lock, originally protected by a non-raw spinlock, could lead to a data race on PREEMPT_RT. The patch converts the filter list lock to raw_spinlock to avoid sleeping in atomic contexts on RT kernels; it notes that memory alloca...
CVE-2024-56585
CVE-2024-56585 : In PREEMPT_RT Linux kernels on LoongArch, a sleeping-in-atomic-context issue arises due to a GFP flag change (GFP_KERNEL to GFP_ATOMIC) for alloc_pages_node() in setup_tlb_handler(). The underlying problem is that PREEMPT_RT replaces normal spinlocks with rt-spinlocks, and rt_spi...
CVE-2024-53089 LoongArch: KVM: Mark hrtimer to expire in hard interrupt context
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Mark hrtimer to expire in hard interrupt context Like commit 2c0d278f3293f "KVM: LAPIC: Mark hrtimer to expire in hard interrupt context" and commit 9090825fa9974 "KVM: arm/arm64: Let the timer expire in hardirq...
CVE-2024-53089 LoongArch: KVM: Mark hrtimer to expire in hard interrupt context
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Mark hrtimer to expire in hard interrupt context Like commit 2c0d278f3293f "KVM: LAPIC: Mark hrtimer to expire in hard interrupt context" and commit 9090825fa9974 "KVM: arm/arm64: Let the timer expire in hardirq...
CVE-2024-53089
CVE-2024-53089 concerns the Linux kernel on LoongArch with KVM. The issue arises from hrtimers that may be canceled/called in contexts that violate PREEMPT_RT rules, after timers are unmarked to expire in soft expiry but then canceled from a preempt-notifier with preemption disabled. The fix make...
CVE-2024-50140
In the Linux kernel, the following vulnerability has been resolved: sched/core: Disable page allocation in tasktickmmcid With KASAN and PREEMPTRT enabled, calling taskworkadd in tasktickmmcid may cause the following splat. 63.696416 BUG: sleeping function called from invalid context at...
UBUNTU-CVE-2024-50140
In the Linux kernel, the following vulnerability has been resolved: sched/core: Disable page allocation in tasktickmmcid With KASAN and PREEMPTRT enabled, calling taskworkadd in tasktickmmcid may cause the following splat. 63.696416 BUG: sleeping function called from invalid context at...
CVE-2024-50140 sched/core: Disable page allocation in task_tick_mm_cid()
In the Linux kernel, the following vulnerability has been resolved: sched/core: Disable page allocation in tasktickmmcid With KASAN and PREEMPTRT enabled, calling taskworkadd in tasktickmmcid may cause the following splat. 63.696416 BUG: sleeping function called from invalid context at...
CVE-2024-42287
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Complete command early within lock A crash was observed while performing NPIV and FW reset, BUG: kernel NULL pointer dereference, address: 000000000000001c PF: supervisor read access in kernel mode PF:...
CVE-2024-35819
In the Linux kernel, the following vulnerability has been resolved: soc: fsl: qbman: Use raw spinlock for cgrlock smpcallfunction always runs its callback in hard IRQ context, even on PREEMPTRT, where spinlocks can sleep. So we need to use a raw spinlock for cgrlock to ensure we aren't waiting on...