CVE-2024-38663
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
blk-cgroup: fix list corruption from resetting io stat
Since commit 3b8cc6298724 ("blk-cgroup: Optimize blkcg_rstat_flush()"), each iostat instance is added to blkcg percpu list, so blkcg_reset_stats() can't reset the stat instance by memset(), otherwise the llist may be corrupted.
Fix the issue by only resetting the counter part.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 3b8cc6298724021da845f2f9fd7dd4b6829a6817 < d4a60298ac34f027a09f8f893fdbd9e06279bb24 | affected |
| Linux | Linux | 3b8cc6298724021da845f2f9fd7dd4b6829a6817 < 89bb36c72e1951843f9e04dc84412e31fcc849a9 | affected |
| Linux | Linux | 3b8cc6298724021da845f2f9fd7dd4b6829a6817 < 6da6680632792709cecf2b006f2fe3ca7857e791 | affected |
| Linux | Linux | 6.2 | affected |
| Linux | Linux | 0 < 6.2 | unaffected |
| Linux | Linux | 6.6.33 <= 6.6.* | unaffected |
| Linux | Linux | 6.9.4 <= 6.9.* | unaffected |
| Linux | Linux | 6.10 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/d4a60298ac34f027a09f8f893fdbd9e06279bb24
- https://git.kernel.org/stable/c/89bb36c72e1951843f9e04dc84412e31fcc849a9
- https://git.kernel.org/stable/c/6da6680632792709cecf2b006f2fe3ca7857e791
References
- https://git.kernel.org/stable/c/d4a60298ac34f027a09f8f893fdbd9e06279bb24
- https://git.kernel.org/stable/c/89bb36c72e1951843f9e04dc84412e31fcc849a9
- https://git.kernel.org/stable/c/6da6680632792709cecf2b006f2fe3ca7857e791
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.