CVE-2024-57949

MEDIUM

Linux Kernel - Improper Locking in its_irq_set_vcpu_affinity

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Don't enable interrupts in its_irq_set_vcpu_affinity() The following call-chain leads to enabling interrupts in a nested interrupt disabled section: irq_set_vcpu_affinity() irq_get_desc_lock() raw_spin_lock_irqsave() <--- Disable interrupts its_irq_set_vcpu_affinity() guard(raw_spinlock_irq) <--- Enables interrupts when leaving the guard() irq_put_desc_unlock() <--- Warns because interrupts are enabled This was broken in commit b97e8a2f7130, which replaced the original raw_spin_[un]lock() pair with guard(raw_spinlock_irq). Fix the issue by using guard(raw_spinlock). [ tglx: Massaged change log ]

References (5)

Core 5

Scores

CVSS v3 5.5
EPSS 0.0017
EPSS Percentile 7.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-667
Status published
Products (19)
linux/Kernel < 6.1.127linux
linux/Kernel 6.2.0 - 6.6.74linux
linux/Kernel 6.7.0 - 6.12.11linux
Linux/Linux < 6.10
Linux/Linux 2458f2362f695584bd824c922caa07ffc4fe0d5c - d7b0e89610dd45ac6cf0d6f99bfa9ccc787db344
Linux/Linux 5c0fb9cb404a2efbbc319ff9d1b877cf4e47e950 - 6c84ff2e788fce0099ee3e71a3ed258b1ca1a223
Linux/Linux 6.1.127 - 6.1.*
Linux/Linux 6.1.95 - 6.1.127
Linux/Linux 6.10
Linux/Linux 6.12.11 - 6.12.*
... and 9 more
Published Feb 09, 2025
Tracked Since Feb 18, 2026