Bug 2257968 (CVE-2024-0443) - CVE-2024-0443 kernel: blkio memory leakage due to blkcg and some blkgs are not freed after they are made offline.
Summary: CVE-2024-0443 kernel: blkio memory leakage due to blkcg and some blkgs are no...
Keywords:
Status: NEW
Alias: CVE-2024-0443
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2208904 2208905 2220810 2220811 2238721 2257970
Blocks: 2257966
TreeView+ depends on / blocked
 
Reported: 2024-01-11 20:41 UTC by Rohit Keshri
Modified: 2024-02-28 06:19 UTC (History)
45 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading to a cgroup blkio memory leakage problem. When a cgroup is being destroyed, cgroup_rstat_flush() is only called at css_release_work_fn(), which is called when the blkcg reference count reaches 0. This circular dependency will prevent blkcg and some blkgs from being freed after they are made offline. This issue may allow an attacker with a local access to cause system instability, such as an out of memory error.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description Rohit Keshri 2024-01-11 20:41:57 UTC 
A cgroup blkio memory leakage problem was found in blkgs destruction path in block/blk-cgroup.c in the Linux kernel. In this flaw, an attacker with a local access may cause a system instability, such as out of memory.

Refer:
https://lore.kernel.org/linux-block/20221215033132.230023-3-longman@redhat.com/
Comment 1 Rohit Keshri 2024-01-11 20:45:04 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2257970]
Comment 15 Justin M. Forbes 2024-01-15 19:11:10 UTC 
This was fixed for Fedora with the 6.3.9 stable kernel updates.
Note You need to log in before you can comment on or make changes to this bug.