Bug 2281514 (CVE-2024-35929)

Summary: CVE-2024-35929 kernel: rcu/nocb: Fix WARN_ON_ONCE() in the rcu_nocb_bypass_lock()
Product: [Other] Security Response Reporter: ybuenos
Component: vulnerabilityAssignee: Product Security <prodsec-ir-bot>
Status: NEW --- QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: acaringi, allarkin, aquini, bhu, chwhite, cye, cyin, dbohanno, debarbos, dfreiber, drow, dvlasenk, esandeen, ezulian, hkrzesin, jarod, jburrell, jdenham, jfaracco, jlelli, joe.lawrence, jshortt, jstancek, jwyatt, kcarcia, ldoskova, lgoncalv, lzampier, mleitner, mmilgram, mstowell, nmurray, ptalbert, rparrazo, rrobaina, rvrbovsk, rysulliv, scweaver, sidakwo, sukulkar, tglozar, tyberry, vkumar, wcosta, williams, wmealing, ycote, ykopkova, zhijwang
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: kernel 6.6.27, kernel 6.8.6, kernel 6.9 Doc Type: If docs needed, set a value
Doc Text:
This is a vulnerability in the Linux kernel's RCU (Read-Copy Update) subsystem, specifically affecting configurations that enable lazy RCU operations (CONFIG_RCU_NOCB_CPU_DEFAULT_ALL and CONFIG_RCU_LAZY). Under certain conditions, operations like writing to /proc/sys/vm/drop_caches could trigger warnings due to unsafe handling of the RCU nocb bypass queue. This issue may result in system instability or undefined behavior. The vulnerability has been resolved by improving how the nocb bypass queue is managed to ensure safer concurrency. Users should update to a patched kernel version to prevent potential disruptions.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2281515    
Bug Blocks: 2281529    

Description ybuenos 2024-05-19 15:52:22 UTC 
In the Linux kernel, the following vulnerability has been resolved:

rcu/nocb: Fix WARN_ON_ONCE() in the rcu_nocb_bypass_lock()

The Linux kernel CVE team has assigned CVE-2024-35929 to this issue.

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024051916-CVE-2024-35929-6f74@gregkh/T
Comment 1 ybuenos 2024-05-19 15:53:00 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2281515]
Comment 5 Alex 2024-06-09 14:28:53 UTC 
The result of automatic check (that is developed by Alexander Larkin) for this CVE-2024-35929 is: 	SKIP	No affected files built, so skip this CVE	NO			-	-	unknown	 (where first YES/NO value means if related sources built).