Fixed
Created: Jun 19, 2024
Updated: Aug 28, 2024
Resolved Date: Jun 19, 2024
Found In Version: 10.24.33.1
Fix Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:nilfs2: fix potential hang in nilfs_detach_log_writer()Syzbot has reported a potential hang in nilfs_detach_log_writer() calledduring nilfs2 unmount.Analysis revealed that this is because nilfs_segctor_sync(), whichsynchronizes with the log writer thread, can be called afternilfs_segctor_destroy() terminates that thread, as shown in the call tracebelow:nilfs_detach_log_writer nilfs_segctor_destroy nilfs_segctor_kill_thread --> Shut down log writer thread flush_work nilfs_iput_work_func nilfs_dispose_list iput nilfs_evict_inode nilfs_transaction_commit nilfs_construct_segment (if inode needs sync) nilfs_segctor_sync --> Attempt to synchronize with log writer thread *** DEADLOCK ***Fix this issue by changing nilfs_segctor_sync() so that the log writerthread returns normally without synchronizing after it terminates, and byforcing tasks that are already waiting to complete once after the threadterminates.The skipped inode metadata flushout will then be processed together in thesubsequent cleanup work in nilfs_segctor_destroy().
CREATE(Triage):(User=admin) CVE-2024-38582 (https://nvd.nist.gov/vuln/detail/CVE-2024-38582)
