CVE-2024-40977

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7921s: fix potential hung tasks during chip recovery

During chip recovery (e.g. chip reset), there is a possible situation that kernel worker reset_work is holding the lock and waiting for kernel thread stat_worker to be parked, while stat_worker is waiting for the release of the same lock. It causes a deadlock resulting in the dumping of hung tasks messages and possible rebooting of the device.

This patch prevents the execution of stat_worker during the chip recovery.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7bc04215a66b60e198aecaee8418f6d79fa19faa < 0b81faa05b0b9feb3ae2d69be1d21f0d126ecb08affected
LinuxLinux7bc04215a66b60e198aecaee8418f6d79fa19faa < 85edd783f4539a994d66c4c014d5858f490b7a02affected
LinuxLinux7bc04215a66b60e198aecaee8418f6d79fa19faa < e974dd4c22a23ec3ce579fb6d31a674ac0435da9affected
LinuxLinux7bc04215a66b60e198aecaee8418f6d79fa19faa < ecf0b2b8a37c8464186620bef37812a117ff6366affected
LinuxLinux4.16affected
LinuxLinux0 < 4.16unaffected
LinuxLinux6.1.96 <= 6.1.*unaffected
LinuxLinux6.6.36 <= 6.6.*unaffected
LinuxLinux6.9.7 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References