CVE-2024-56694: bpf: fix recursive lock when verdict program return SK_PASS
First published: Sat Dec 28 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: bpf: fix recursive lock when verdict program return SK_PASS When the stream_verdict program returns SK_PASS, it places the received skb into its own receive queue, but a recursive lock eventually occurs, leading to an operating system deadlock. This issue has been present since v6.9. ''' sk_psock_strp_data_ready write_lock_bh(&sk->sk_callback_lock) strp_data_ready strp_read_sock read_sock -> tcp_read_sock strp_recv cb.rcv_msg -> sk_psock_strp_read # now stream_verdict return SK_PASS without peer sock assign __SK_PASS = sk_psock_map_verd(SK_PASS, NULL) sk_psock_verdict_apply sk_psock_skb_ingress_self sk_psock_skb_ingress_enqueue sk_psock_data_ready read_lock_bh(&sk->sk_callback_lock) <= dead lock ''' This topic has been discussed before, but it has not been fixed. Previous discussion: https://lore.kernel.org/all/6684a5864ec86_403d20898@john.notmuch
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | >=5.10.223<5.11 | |
| Linux Kernel | >=5.15.159<5.15.174 | |
| Linux Kernel | >=6.1.91<6.1.120 | |
| Linux Kernel | >=6.6.31<6.6.64 | |
| Linux Kernel | >=6.8.10<6.11.11 | |
| Linux Kernel | >=6.12<6.12.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/01f1b88acfd79103da0610b45471f6c88ea98d72
- https://git.kernel.org/stable/c/386efa339e08563dd33e83bc951aea5d407fe578
- https://git.kernel.org/stable/c/6694f7acd625ed854bf6342926e771d65dad7f69
- https://git.kernel.org/stable/c/8ca2a1eeadf09862190b2810697702d803ceef2d
- https://git.kernel.org/stable/c/da2bc8a0c8f3ac66fdf980fc59936f851a083561
- https://git.kernel.org/stable/c/f84c5ef6ca23cc2f72f3b830d74f67944684bb05
- https://git.kernel.org/stable/c/078f7e1521442a55db4bed812a2fbaf02ac33819
- https://git.kernel.org/stable/c/221109ba2127eabd0aa64718543638b58b15df56
Frequently Asked Questions
What is the severity of CVE-2024-56694?
CVE-2024-56694 has a severity rating that indicates it can cause significant issues related to recursive locking in the Linux kernel.
How do I fix CVE-2024-56694?
To address CVE-2024-56694, users should update their Linux kernel to a version that is not affected, specifically versions beyond those listed in the vulnerability description.
What versions of the Linux kernel are impacted by CVE-2024-56694?
CVE-2024-56694 affects multiple versions of the Linux kernel, including versions from 5.10.223 to 5.11, 5.15.159 to 5.15.174, 6.1.91 to 6.1.120, 6.6.31 to 6.6.64, 6.8.10 to 6.11.11, and other versions up to 6.12.
What type of vulnerability is CVE-2024-56694?
CVE-2024-56694 is identified as a bug within the BPF (Berkeley Packet Filter) related to recursive locking during packet handling.
Does CVE-2024-56694 affect any specific distributions of Linux?
Yes, CVE-2024-56694 can potentially affect any Linux distribution that utilizes the affected versions of the Linux kernel mentioned in the vulnerability report.
- agent/title
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- agent/severity
- agent/remedy
- agent/softwarecombine
- agent/weakness
- agent/references
- agent/source
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.10.223
- version/linux kernel/5.15.159
- version/linux kernel/6.1.91
- version/linux kernel/6.6.31
- version/linux kernel/6.8.10
- version/linux kernel/6.12