Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-36908
HistoryMay 30, 2024 - 12:00 a.m.

CVE-2024-36908

2024-05-3000:00:00
ubuntu.com
ubuntu.com
11
linux kernel blk-iocost vulnerability

AI Score

6.4

Confidence

High

EPSS

0

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:
blk-iocost: do not WARN if iocg was already offlined In iocg_pay_debt(),
warn is triggered if ‘active_list’ is empty, which is intended to confirm
iocg is active when it has debt. However, warn can be triggered during a
blkcg or disk removal, if iocg_waitq_timer_fn() is run at that time:
WARNING: CPU: 0 PID: 2344971 at block/blk-iocost.c:1402
iocg_pay_debt+0x14c/0x190 Call trace: iocg_pay_debt+0x14c/0x190
iocg_kick_waitq+0x438/0x4c0 iocg_waitq_timer_fn+0xd8/0x130
__run_hrtimer+0x144/0x45c __hrtimer_run_queues+0x16c/0x244
hrtimer_interrupt+0x2cc/0x7b0 The warn in this situation is meaningless.
Since this iocg is being removed, the state of the ‘active_list’ is
irrelevant, and ‘waitq_timer’ is canceled after removing ‘active_list’ in
ioc_pd_free(), which ensures iocg is freed after iocg_waitq_timer_fn()
returns. Therefore, add the check if iocg was already offlined to avoid
warn when removing a blkcg or disk.

Related

osv 6
cve 1
redhatcve 1
debiancve 1
nvd 1
cvelist 1
vulnrichment 1
openvas 11
nessus 9
ubuntu 4
mageia 2
osv
osv
CVE-2024-36908
2024-05-30 16:15:00
linux-nvidia-lowlatency, linux-oracle vulnerabilities
2024-08-09 00:06:04
linux, linux-aws, linux-gcp, linux-gke, linux-ibm, linux-nvidia, linux-nvidia-6.8 vulnerabilities
2024-08-08 21:48:26
cve
cve
CVE-2024-36908
2024-05-30 16:15:14
redhatcve
redhatcve
CVE-2024-36908
2024-06-03 17:33:04
debiancve
debiancve
CVE-2024-36908
2024-05-30 16:15:14
nvd
nvd
CVE-2024-36908
2024-05-30 16:15:14
cvelist
cvelist
CVE-2024-36908 blk-iocost: do not WARN if iocg was already offlined
2024-05-30 15:29:07
vulnrichment
vulnrichment
CVE-2024-36908 blk-iocost: do not WARN if iocg was already offlined
2024-05-30 15:29:07
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2206)
2024-08-21 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2207)
2024-08-21 00:00:00
Ubuntu: Security Advisory (USN-6949-1)
2024-08-09 00:00:00
nessus
nessus
EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-2207)
2024-08-21 00:00:00
EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-2206)
2024-08-21 00:00:00
Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)
2024-08-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-09 00:00:00
Linux kernel (OEM) vulnerabilities
2024-08-12 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44

AI Score

6.4

Confidence

High

EPSS

0

Percentile

15.5%

JSON
Related for UB:CVE-2024-36908
osv6cve1redhatcve1debiancve1nvd1cvelist1vulnrichment1openvas11nessus9ubuntu4mageia2