CVE-2024-42252
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/08/2024
Last modified:
14/12/2024
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
closures: Change BUG_ON() to WARN_ON()<br />
<br />
If a BUG_ON() can be hit in the wild, it shouldn&#39;t be a BUG_ON()<br />
<br />
For reference, this has popped up once in the CI, and we&#39;ll need more<br />
info to debug it:<br />
<br />
03240 ------------[ cut here ]------------<br />
03240 kernel BUG at lib/closure.c:21!<br />
03240 kernel BUG at lib/closure.c:21!<br />
03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP<br />
03240 Modules linked in:<br />
03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570<br />
03240 Hardware name: linux,dummy-virt (DT)<br />
03240 Workqueue: btree_update btree_interior_update_work<br />
03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)<br />
03240 pc : closure_put+0x224/0x2a0<br />
03240 lr : closure_put+0x24/0x2a0<br />
03240 sp : ffff0000d12071c0<br />
03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360<br />
03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040<br />
03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168<br />
03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001<br />
03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974<br />
03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d<br />
03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e<br />
03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b<br />
03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954<br />
03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000<br />
03240 Call trace:<br />
03240 closure_put+0x224/0x2a0<br />
03240 bch2_check_for_deadlock+0x910/0x1028<br />
03240 bch2_six_check_for_deadlock+0x1c/0x30<br />
03240 six_lock_slowpath.isra.0+0x29c/0xed0<br />
03240 six_lock_ip_waiter+0xa8/0xf8<br />
03240 __bch2_btree_node_lock_write+0x14c/0x298<br />
03240 bch2_trans_lock_write+0x6d4/0xb10<br />
03240 __bch2_trans_commit+0x135c/0x5520<br />
03240 btree_interior_update_work+0x1248/0x1c10<br />
03240 process_scheduled_works+0x53c/0xd90<br />
03240 worker_thread+0x370/0x8c8<br />
03240 kthread+0x258/0x2e8<br />
03240 ret_from_fork+0x10/0x20<br />
03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)<br />
03240 ---[ end trace 0000000000000000 ]---<br />
03240 Kernel panic - not syncing: Oops - BUG: Fatal exception<br />
03240 SMP: stopping secondary CPUs<br />
03241 SMP: failed to stop secondary CPUs 13,15<br />
03241 Kernel Offset: disabled<br />
03241 CPU features: 0x00,00000003,80000008,4240500b<br />
03241 Memory Limit: none<br />
03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---<br />
03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.9.11 (excluding) | |
| cpe:2.3:o:linux:linux_kernel:6.10:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.10:rc2:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.10:rc3:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.10:rc4:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page