2301500 – (CVE-2024-42135) CVE-2024-42135 kernel: vhost_task: Handle SIGKILL by flushing work and exiting

Bug 2301500 (CVE-2024-42135) - CVE-2024-42135 kernel: vhost_task: Handle SIGKILL by flushing work and exiting

Summary: CVE-2024-42135 kernel: vhost_task: Handle SIGKILL by flushing work and exiting

Keywords:
Status:	NEW
Alias:	CVE-2024-42135
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2301993
Blocks:
TreeView+	depends on / blocked

Reported:	2024-07-30 08:36 UTC by OSIDB Bzimport
Modified:	2024-09-23 14:03 UTC (History)
CC List:	4 users (show)
Fixed In Version:	kernel 6.6.39, kernel 6.9.9, kernel 6.10
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-07-30 08:36:31 UTC

In the Linux kernel, the following vulnerability has been resolved:

vhost_task: Handle SIGKILL by flushing work and exiting

Instead of lingering until the device is closed, this has us handle
SIGKILL by:

1. marking the worker as killed so we no longer try to use it with
   new virtqueues and new flush operations.
2. setting the virtqueue to worker mapping so no new works are queued.
3. running all the exiting works.

Comment 1 Mauro Matteo Cascella 2024-07-31 10:00:00 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024073029-CVE-2024-42135-0694@gregkh/T

Comment 2 Mauro Matteo Cascella 2024-07-31 10:00:21 UTC

Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2301993]

Note You need to log in before you can comment on or make changes to this bug.