CVE-2024-56709
Published Dec 29, 2024
Last updated 2 months ago
- Description
- In the Linux kernel, the following vulnerability has been resolved: io_uring: check if iowq is killed before queuing task work can be executed after the task has gone through io_uring termination, whether it's the final task_work run or the fallback path. In this case, task work will find ->io_wq being already killed and null'ed, which is a problem if it then tries to forward the request to io_queue_iowq(). Make io_queue_iowq() fail requests in this case. Note that it also checks PF_KTHREAD, because the user can first close a DEFER_TASKRUN ring and shortly after kill the task, in which case ->iowq check would race.
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Received
- Hype score
- Not currently trending
[io_uring] (CVE-2024-53187) https://t.co/TQRZeftZjs (CVE-2024-56584) https://t.co/fzED56n4Rb (CVE-2024-56709) https://t.co/f95adls87s
@xvonfers
29 Dec 2024
2883 Impressions
5 Retweets
27 Likes
6 Bookmarks
0 Replies
0 Quotes
CVE-2024-56709 Linux Kernel io_uring Vulnerability Resolved Task Work Exploit P... https://t.co/Ri5zV8RbZO Customizable Vulnerability Alerts: https://t.co/U7998fz7yk
@VulmonFeeds
29 Dec 2024
63 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
CVE-2024-56709 In the Linux kernel, the following vulnerability has been resolved: io_uring: check if iowq is killed before queuing task work can be executed after the task has go… https://t.co/iUkusNBEVh
@CVEnew
29 Dec 2024
389 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes