CVE-2024-41063
Published: Jul 29, 2024
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: cancel all works upon hci_unregister_dev() syzbot is reporting that calling hci_release_dev() from hci_error_reset() due to hci_dev_put() from hci_error_reset() can cause deadlock at destroy_workqueue(), for hci_error_reset() is called from hdev->req_workqueue which destroy_workqueue() needs to flush. We need to make sure that hdev->{rx_work,cmd_work,tx_work} which are queued into hdev->workqueue and hdev->{power_on,error_reset} which are queued into hdev->req_workqueue are no longer running by the moment destroy_workqueue(hdev->workqueue); destroy_workqueue(hdev->req_workqueue); are called from hci_release_dev(). Call cancel_work_sync() on these work items from hci_unregister_dev() as soon as hdev->list is removed from hci_dev_list.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected e0b278650f07acf2e0932149183458468a731c03 - < 48542881997e17b49dc16b93fe910e0cfcf7a9f9affected 98fb98fd37e42fd4ce13ff657ea64503e24b6090 - < 9cfc84b1d464cc024286f42a090718f9067b80edaffected 6dd0a9dfa99f8990a08eb8fdd8e79bee31c7d8e2 - < ddeda6ca5f218b668b560d90fc31ae469adbfd92affected da4569d450b193e39e87119fd316c0291b585d14 - < d2ce562a5aff1dcd0c50d9808ea825ef90da909faffected 45085686b9559bfbe3a4f41d3d695a520668f5e1 - < 96600c2e5ee8213dbab5df1617293d8e847bb4fa+11 more versions |
Linux | Linux | affected 6.8unaffected 0 - < 6.8unaffected 4.19.319 - <= 4.19.*unaffected 5.4.281 - <= 5.4.*unaffected 5.10.223 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now