CVE-2021-47382

Summary

In the Linux kernel, the following vulnerability has been resolved:

s390/qeth: fix deadlock during failing recovery

Commit 0b9902c1fcc5 ("s390/qeth: fix deadlock during recovery") removed taking discipline_mutex inside qeth_do_reset(), fixing potential deadlocks. An error path was missed though, that still takes discipline_mutex and thus has the original deadlock potential.

Intermittent deadlocks were seen when a qeth channel path is configured offline, causing a race between qeth_do_reset and ccwgroup_remove. Call qeth_set_offline() directly in the qeth_do_reset() error case and then a new variant of ccwgroup_set_offline(), without taking discipline_mutex.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb41b554c1ee75070a14c02a88496b1f231c7eacc < 0bfe741741327822d1482c7edef0184636d08b40affected
LinuxLinuxb41b554c1ee75070a14c02a88496b1f231c7eacc < d2b59bd4b06d84a4eadb520b0f71c62fe8ec0a62affected
LinuxLinuxaf0c184ea106051e428b5a0b5f2dfd31cbc54c52affected
LinuxLinux5.10.8 < 5.11affected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.14.10 <= 5.14.*unaffected
LinuxLinux5.15 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References