Bug 2344537 (CVE-2024-57949) - CVE-2024-57949 kernel: irqchip/gic-v3-its: Don't enable interrupts in its_irq_set_vcpu_affinity()
Summary: CVE-2024-57949 kernel: irqchip/gic-v3-its: Don't enable interrupts in its_irq...
Keywords:
Status: NEW
Alias: CVE-2024-57949
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-02-09 12:01 UTC by OSIDB Bzimport
Modified: 2025-04-06 19:24 UTC (History)
4 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2025-02-09 12:01:09 UTC 
In the Linux kernel, the following vulnerability has been resolved:

irqchip/gic-v3-its: Don't enable interrupts in its_irq_set_vcpu_affinity()

The following call-chain leads to enabling interrupts in a nested interrupt
disabled section:

irq_set_vcpu_affinity()
  irq_get_desc_lock()
     raw_spin_lock_irqsave()   <--- Disable interrupts
  its_irq_set_vcpu_affinity()
     guard(raw_spinlock_irq)   <--- Enables interrupts when leaving the guard()
  irq_put_desc_unlock()        <--- Warns because interrupts are enabled

This was broken in commit b97e8a2f7130, which replaced the original
raw_spin_[un]lock() pair with guard(raw_spinlock_irq).

Fix the issue by using guard(raw_spinlock).

[ tglx: Massaged change log ]
Comment 1 Avinash Hanwate 2025-02-10 04:37:31 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025020928-CVE-2024-57949-1d60@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.