#VU91448 Improper locking in Linux kernel - CVE-2024-35819

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the qman_create_portal(), qm_congestion_task(), qman_create_cgr(), qman_delete_cgr() and qman_update_cgr() functions in drivers/soc/fsl/qbman/qman.c. A local user can perform a denial of service (DoS) attack.

Remediation

External links

• https://git.kernel.org/stable/c/2b3fede8225133671ce837c0d284804aa3bc7a02
• https://git.kernel.org/stable/c/ff50716b7d5b7985979a5b21163cd79fb3d21d59
• https://git.kernel.org/stable/c/32edca2f03a6cc42c650ddc3ad83d086e3f365d1
• https://git.kernel.org/stable/c/9a3ca8292ce9fdcce122706c28c3f07bc857fe5e
• https://git.kernel.org/stable/c/d6b5aac451c9cc12e43ab7308e0e2ddc52c62c14
• https://git.kernel.org/stable/c/54d26adf64c04f186098b39dba86b86037084baa
• https://git.kernel.org/stable/c/f39d36b7540cf0088ed7ce2de2794f2aa237f6df
• https://git.kernel.org/stable/c/cd53a8ae5aacb4ecd25088486dea1cd02e74b506
• https://git.kernel.org/stable/c/fbec4e7fed89b579f2483041fabf9650fb0dd6bc
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.312
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.215
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.154
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.274
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.84
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.24
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.7.12
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.8.3