CVE-2024-56694

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> bpf: fix recursive lock when verdict program return SK_PASS<br /> <br /> When the stream_verdict program returns SK_PASS, it places the received skb<br /> into its own receive queue, but a recursive lock eventually occurs, leading<br /> to an operating system deadlock. This issue has been present since v6.9.<br /> <br /> &amp;#39;&amp;#39;&amp;#39;<br /> sk_psock_strp_data_ready<br /> write_lock_bh(&amp;sk-&gt;sk_callback_lock)<br /> strp_data_ready<br /> strp_read_sock<br /> read_sock -&gt; tcp_read_sock<br /> strp_recv<br /> cb.rcv_msg -&gt; sk_psock_strp_read<br /> # now stream_verdict return SK_PASS without peer sock assign<br /> __SK_PASS = sk_psock_map_verd(SK_PASS, NULL)<br /> sk_psock_verdict_apply<br /> sk_psock_skb_ingress_self<br /> sk_psock_skb_ingress_enqueue<br /> sk_psock_data_ready<br /> read_lock_bh(&amp;sk-&gt;sk_callback_lock)