Deadlock Vulnerability in Linux Kernel SCSI Megaraid_sas Driver
CVE-2024-57807

Currently unrated

Key Information:

Vendor
Linux
Status
Vendor
CVE Published:
11 January 2025

Summary

A deadlock vulnerability has been identified in the Linux kernel's SCSI megaraid_sas driver, where a possible circular locking dependency could lead to system instability. This occurs when two or more locking mechanisms are engaged in such a way that each is waiting for the other to release its lock, potentially causing a complete standstill in system operations. The recent fix addresses this issue by strategically releasing the reset_mutex temporarily to prevent the deadlock condition, thereby enhancing the overall resilience and performance of the SCSI subsystem.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 78afb9bfad00c4aa58a424111d7edbcab9452f2b

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3c654998a3e8167a58b6c6fede545fe400a4b554

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.