CVE-2024-42135

Summary

In the Linux kernel, the following vulnerability has been resolved:

vhost_task: Handle SIGKILL by flushing work and exiting

Instead of lingering until the device is closed, this has us handle SIGKILL by:

  1. marking the worker as killed so we no longer try to use it with new virtqueues and new flush operations.
  2. setting the virtqueue to worker mapping so no new works are queued.
  3. running all the exiting works.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf9010dbdce911ee1f1af1398a24b1f9f992e0080 < abe067dc3a662eef7d5cddbbc41ed50a0b68b0afaffected
LinuxLinuxf9010dbdce911ee1f1af1398a24b1f9f992e0080 < dec987fe2df670827eb53b97c9552ed8dfc63ad4affected
LinuxLinuxf9010dbdce911ee1f1af1398a24b1f9f992e0080 < db5247d9bf5c6ade9fd70b4e4897441e0269b233affected
LinuxLinux6.4affected
LinuxLinux0 < 6.4unaffected
LinuxLinux6.6.39 <= 6.6.*unaffected
LinuxLinux6.9.9 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References