CVE-2024-35974
Published: May 20, 2024
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: block: fix q->blkg_list corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q->blkg_list when calling blkcg_init_disk() for rebind, then q->blkg_list becomes corrupted. Fix the list corruption issue by: - add blkg_init_queue() to initialize q->blkg_list & q->blkcg_mutex only - move calling blkg_init_queue() into blk_alloc_queue() The list corruption should be started since commit f1c006f1c685 ("blk-cgroup: synchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()") which delays removing blkg from q->blkg_list into blkg_free_workfn().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 81c1188905f88b77743d1fdeeedfc8cb7b67787d - < b5dae1cd0d8368b4338430ff93403df67f0b8bccaffected bfe46d2efe46c5c952f982e2ca94fe2ec5e58e2a - < 083b58373463a6e5ee60ecb135269348f68ad7dfaffected 1059699f87eb0b3aa9d574b91a572d534897134a - < 740ffad95ca8033bd6e080ed337655b13b4d38acaffected 1059699f87eb0b3aa9d574b91a572d534897134a - < 858c489d81d659af17a4d11cfaad2afb42e47a76affected 1059699f87eb0b3aa9d574b91a572d534897134a - < 8b8ace080319a866f5dfe9da8e665ae51d971c54+2 more versions |
Linux | Linux | affected 5.18unaffected 0 - < 5.18unaffected 6.1.17 - <= 6.1.*unaffected 6.2.4 - <= 6.2.*unaffected 6.6.28 - <= 6.6.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now