Description

In the Linux kernel, the following vulnerability has been resolved: net: wan: fsl_qmc_hdlc: Convert carrier_lock spinlock to a mutex The carrier_lock spinlock protects the carrier detection. While it is held, framer_get_status() is called which in turn takes a mutex. This is not correct and can lead to a deadlock. A run with PROVE_LOCKING enabled detected the issue: [ BUG: Invalid wait context ] ... c204ddbc (&framer->mutex){+.+.}-{3:3}, at: framer_get_status+0x40/0x78 other info that might help us debug this: context-{4:4} 2 locks held by ifconfig/146: #0: c0926a38 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x12c/0x664 #1: c2006a40 (&qmc_hdlc->carrier_lock){....}-{2:2}, at: qmc_hdlc_framer_set_carrier+0x30/0x98 Avoid the spinlock usage and convert carrier_lock to a mutex.

INFO

Published Date :

2024-08-20T23:45:26.643Z

Last Modified :

2025-05-04T09:27:55.603Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-43862 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-43862.

URL Resource
https://git.kernel.org/stable/c/c4d6a347ba7babdf9d90a0eb24048c266cae0532 cve-icon cve-icon
https://git.kernel.org/stable/c/f223d2b4acb7a45a6e0581cb380e1af1a6dc7ab9 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024082154-CVE-2024-43862-636a@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-43862 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-43862 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact