CVE-2021-47382

MEDIUM

Linux Kernel 5.10.8-5.14.10 - Deadlock via qeth_do_reset Error Path

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix deadlock during failing recovery Commit 0b9902c1fcc5 ("s390/qeth: fix deadlock during recovery") removed taking discipline_mutex inside qeth_do_reset(), fixing potential deadlocks. An error path was missed though, that still takes discipline_mutex and thus has the original deadlock potential. Intermittent deadlocks were seen when a qeth channel path is configured offline, causing a race between qeth_do_reset and ccwgroup_remove. Call qeth_set_offline() directly in the qeth_do_reset() error case and then a new variant of ccwgroup_set_offline(), without taking discipline_mutex.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/0bfe741741327822d1482c7edef0184636d08b40

Patch

https://git.kernel.org/stable/c/d2b59bd4b06d84a4eadb520b0f71c62fe8ec0a62

Scores

CVSS v3 4.7

EPSS 0.0015

EPSS Percentile 4.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-667 CWE-362

Status published

Products (10)

Linux/Linux < 5.11

Linux/Linux 5.10.8 - 5.11

Linux/Linux 5.11

Linux/Linux 5.14.10 - 5.14.*

Linux/Linux 5.15

Linux/Linux af0c184ea106051e428b5a0b5f2dfd31cbc54c52

Linux/Linux b41b554c1ee75070a14c02a88496b1f231c7eacc - 0bfe741741327822d1482c7edef0184636d08b40

Linux/Linux b41b554c1ee75070a14c02a88496b1f231c7eacc - d2b59bd4b06d84a4eadb520b0f71c62fe8ec0a62

linux/linux_kernel 5.15 rc1 (2 CPE variants)

linux/linux_kernel 5.10.8 - 5.14.10

Published May 21, 2024

Tracked Since Feb 18, 2026