CVE-2024-57807
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
scsi: megaraid_sas: Fix for a potential deadlock
This fixes a 'possible circular locking dependency detected' warning CPU0 CPU1 —- —- lock(&instance->reset_mutex); lock(&shost->scan_mutex); lock(&instance->reset_mutex); lock(&shost->scan_mutex);
Fix this by temporarily releasing the reset_mutex.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | e8c75b5d88f255ac5dcc4a90ae0c300f0b171fe7 < 78afb9bfad00c4aa58a424111d7edbcab9452f2b | affected |
| Linux | Linux | 422fb12054f42c4c82e3959811afd01bc080821a < f36d024bd15ed356a80dda3ddc46d0a62aa55815 | affected |
| Linux | Linux | ae6874ba4b43c5a00065f48599811a09d33b873d < 3c654998a3e8167a58b6c6fede545fe400a4b554 | affected |
| Linux | Linux | ae6874ba4b43c5a00065f48599811a09d33b873d < edadc693bfcc0f1ea08b8fa041c9361fd042410d | affected |
| Linux | Linux | ae6874ba4b43c5a00065f48599811a09d33b873d < f50783148ec98a1d38b87422e2ceaf2380b7b606 | affected |
| Linux | Linux | ae6874ba4b43c5a00065f48599811a09d33b873d < 466ca39dbf5d0ba71c16b15c27478a9c7d4022a8 | affected |
| Linux | Linux | ae6874ba4b43c5a00065f48599811a09d33b873d < 50740f4dc78b41dec7c8e39772619d5ba841ddd7 | affected |
| Linux | Linux | 5f4f65212e42feaee32533448f1c1defdaa6befa | affected |
| Linux | Linux | 2262bb7ee19e2d0056ffae84cd1803bd330d06af | affected |
| Linux | Linux | 5.4.134 < 5.4.289 | affected |
| Linux | Linux | 5.10.52 < 5.10.233 | affected |
| Linux | Linux | 5.12.19 < 5.13 | affected |
| Linux | Linux | 5.13.4 < 5.14 | affected |
| Linux | Linux | 5.14 | affected |
| Linux | Linux | 0 < 5.14 | unaffected |
| Linux | Linux | 5.4.289 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.233 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.176 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.123 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.69 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.8 <= 6.12.* | unaffected |
| Linux | Linux | 6.13 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
References
- https://git.kernel.org/stable/c/78afb9bfad00c4aa58a424111d7edbcab9452f2b
- https://git.kernel.org/stable/c/f36d024bd15ed356a80dda3ddc46d0a62aa55815
- https://git.kernel.org/stable/c/3c654998a3e8167a58b6c6fede545fe400a4b554
- https://git.kernel.org/stable/c/edadc693bfcc0f1ea08b8fa041c9361fd042410d
- https://git.kernel.org/stable/c/f50783148ec98a1d38b87422e2ceaf2380b7b606
- https://git.kernel.org/stable/c/466ca39dbf5d0ba71c16b15c27478a9c7d4022a8
- https://git.kernel.org/stable/c/50740f4dc78b41dec7c8e39772619d5ba841ddd7
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.