medium
5.5
CWE
667
Advisory Published
Updated

CVE-2024-46829: rtmutex: Drop rt_mutex::wait_lock before scheduling

First published: Fri Sep 27 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: rtmutex: Drop rt_mutex::wait_lock before scheduling rt_mutex_handle_deadlock() is called with rt_mutex::wait_lock held. In the good case it returns with the lock held and in the deadlock case it emits a warning and goes into an endless scheduling loop with the lock held, which triggers the 'scheduling in atomic' warning. Unlock rt_mutex::wait_lock in the dead lock case before issuing the warning and dropping into the schedule for ever loop. [ tglx: Moved unlock before the WARN(), removed the pointless comment, massaged changelog, added Fixes tag ]

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected SoftwareAffected VersionHow to fix
Linux Kernel>=3.2.61<3.3
Linux Kernel>=3.4.99<3.5
Linux Kernel>=3.10.49<3.11
Linux Kernel>=3.12.25<3.13
Linux Kernel>=3.14.10<3.15
Linux Kernel>=3.15.3<3.16
Linux Kernel>=3.16<4.19.322
Linux Kernel>=4.20<5.4.284
Linux Kernel>=5.5<5.10.226
Linux Kernel>=5.11<5.15.167
Linux Kernel>=5.16<6.1.110
Linux Kernel>=6.2<6.6.51
Linux Kernel>=6.7<6.10.10
Linux Kernel=6.11-rc1
Linux Kernel=6.11-rc2
Linux Kernel=6.11-rc3
Linux Kernel=6.11-rc4
Linux Kernel=6.11-rc5
Linux Kernel=6.11-rc6
debian/linux<=5.10.223-1
5.10.234-1
6.1.129-1
6.1.135-1
6.12.22-1
6.12.25-1
debian/linux-6.1
6.1.129-1~deb11u1

Remedy

https://git.kernel.org/stable/c/1401da1486dc1cdbef6025fd74a3977df3a3e5d0

Remedy

https://git.kernel.org/stable/c/432efdbe7da5ecfcbc0c2180cfdbab1441752a38

Remedy

https://git.kernel.org/stable/c/6a976e9a47e8e5b326de671811561cab12e6fb1f

Remedy

https://git.kernel.org/stable/c/85f03ca98e07cd0786738b56ae73740bce0ac27f

Remedy

https://git.kernel.org/stable/c/93f44655472d9cd418293d328f9d141ca234ad83

Remedy

https://git.kernel.org/stable/c/a92d81c9efec9280681c27a2c0a963fd0f1338e0

Remedy

https://git.kernel.org/stable/c/d33d26036a0274b472299d7dcdaa5fb34329f91b

Remedy

https://git.kernel.org/stable/c/f13b5afc5c4889569d84c3011ce449f61fccfb28

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-46829?

    CVE-2024-46829 has a moderate severity rating due to potential deadlock situations in the Linux kernel's rtmutex implementation.

  • How do I fix CVE-2024-46829?

    To fix CVE-2024-46829, update the Linux kernel to a version that includes the patch for this vulnerability.

  • Which versions of the Linux kernel are affected by CVE-2024-46829?

    CVE-2024-46829 affects Linux kernel versions from 3.2.61 to 6.11-rc6.

  • Is CVE-2024-46829 exploitable remotely?

    CVE-2024-46829 is not classified as remotely exploitable as it primarily impacts local thread scheduling.

  • What systems should I prioritize for patching against CVE-2024-46829?

    Focus on systems running affected Linux kernel versions, particularly those used in critical applications or services.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203