CVE-2024-35953

Summary

In the Linux kernel, the following vulnerability has been resolved:

accel/ivpu: Fix deadlock in context_xa

ivpu_device->context_xa is locked both in kernel thread and IRQ context. It requires XA_FLAGS_LOCK_IRQ flag to be passed during initialization otherwise the lock could be acquired from a thread and interrupted by an IRQ that locks it for the second time causing the deadlock.

This deadlock was reported by lockdep and observed in internal tests.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux35b137630f08d913fc2e33df33ccc2570dff3f7d < d43e11d9c7fcb16f18bd46ab2556c2772ffc5775affected
LinuxLinux35b137630f08d913fc2e33df33ccc2570dff3f7d < e6011411147209bc0cc14628cbc155356837e52aaffected
LinuxLinux35b137630f08d913fc2e33df33ccc2570dff3f7d < fd7726e75968b27fe98534ccbf47ccd6fef686f3affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.28 <= 6.6.*unaffected
LinuxLinux6.8.7 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References