CVE-2024-42124

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: qedf: Make qedf_execute_tmf() non-preemptible

Stop calling smp_processor_id() from preemptible code in qedf_execute_tmf90. This results in BUG_ON() when running an RT kernel.

[ 659.343280] BUG: using smp_processor_id() in preemptible [00000000] code: sg_reset/3646 [ 659.343282] caller is qedf_execute_tmf+0x8b/0x360 [qedf]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < 4f314aadeed8cdf42c8cf30769425b5e44702748affected
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < 5ceb40cdee721e13cbe15a0515cacf984e11236baffected
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < 0a8a91932b2772e75bf3f6d133ca4225d1d3e920affected
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < fa49c65a1cec6a3901ef884fdb24d98068b63493affected
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < b6ded5316ec56e973dcf5f9997945aad01a9f062affected
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < 2b9c7787cfcd1e76d873a78f16cf45bfa4b100eaaffected
LinuxLinux61d8658b4a435eac729966cc94cdda077a8df5cd < 0d8b637c9c5eeaa1a4e3dfb336f3ff918eb64fecaffected
LinuxLinux4.11affected
LinuxLinux0 < 4.11unaffected
LinuxLinux5.4.280 <= 5.4.*unaffected
LinuxLinux5.10.222 <= 5.10.*unaffected
LinuxLinux5.15.163 <= 5.15.*unaffected
LinuxLinux6.1.98 <= 6.1.*unaffected
LinuxLinux6.6.39 <= 6.6.*unaffected
LinuxLinux6.9.9 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References