CVE-2024-56584
Published Dec 27, 2024
Last updated 2 months ago
- Description
- In the Linux kernel, the following vulnerability has been resolved: io_uring/tctx: work around xa_store() allocation error issue syzbot triggered the following WARN_ON: WARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51 which is the WARN_ON_ONCE(!xa_empty(&tctx->xa)); sanity check in __io_uring_free() when a io_uring_task is going through its final put. The syzbot test case includes injecting memory allocation failures, and it very much looks like xa_store() can fail one of its memory allocations and end up with ->head being non-NULL even though no entries exist in the xarray. Until this issue gets sorted out, work around it by attempting to iterate entries in our xarray, and WARN_ON_ONCE() if one is found.
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Awaiting Analysis
- Hype score
- Not currently trending
[io_uring] (CVE-2024-53187) https://t.co/TQRZeftZjs (CVE-2024-56584) https://t.co/fzED56n4Rb (CVE-2024-56709) https://t.co/f95adls87s
@xvonfers
29 Dec 2024
2883 Impressions
5 Retweets
27 Likes
6 Bookmarks
0 Replies
0 Quotes
CVE-2024-56584 In the Linux kernel, the following vulnerability has been resolved: io_uring/tctx: work around xa_store() allocation error issue syzbot triggered the following WARN… https://t.co/Kqi2FOBmLE
@CVEnew
27 Dec 2024
598 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes