CVE-2024-27021

Published: May 1, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: r8169: fix LED-related deadlock on module removal Binding devm_led_classdev_register() to the netdev is problematic because on module removal we get a RTNL-related deadlock. Fix this by avoiding the device-managed LED functions. Note: We can safely call led_classdev_unregister() for a LED even if registering it failed, because led_classdev_unregister() detects this and is a no-op in this case.

Vendor	Product	Versions
Linux	Linux	affected `18764b883e157e28126b54e7d4ba9dd487d5bf54 - < 53d986f39acd8ea11c9e460732bfa5add66360d9` affected `18764b883e157e28126b54e7d4ba9dd487d5bf54 - < 19fa4f2a85d777a8052e869c1b892a2f7556569d`
Linux	Linux	affected `6.8` unaffected `0 - < 6.8` unaffected `6.8.8 - <= 6.8.` unaffected `6.9 - <= `

References

https://git.kernel.org/stable/c/53d986f39acd8ea11c9e460732bfa5add66360d9

https://git.kernel.org/stable/c/19fa4f2a85d777a8052e869c1b892a2f7556569d

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-27021

Description

Affected Products

References