1222566 – (CVE-2024-26719) VUL-0: CVE-2024-26719: kernel: nouveau: offload fence uevents work to workqueue

Bug 1222566 (CVE-2024-26719) - VUL-0: CVE-2024-26719: kernel: nouveau: offload fence uevents work to workqueue

Summary: VUL-0: CVE-2024-26719: kernel: nouveau: offload fence uevents work to workqueue

Status:	REOPENED

Alias:	CVE-2024-26719

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Thomas Zimmermann
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/400189/
Whiteboard:	CVSSv3.1:SUSE:CVE-2024-26719:5.5:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-04-09 14:07 UTC by SMASH SMASH
Modified:	2024-06-10 09:13 UTC (History)
CC List:	6 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Flags:	mhocko: needinfo? (security-team)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description SMASH SMASH 2024-04-09 14:07:43 UTC

In the Linux kernel, the following vulnerability has been resolved:

nouveau: offload fence uevents work to workqueue

This should break the deadlock between the fctx lock and the irq lock.

This offloads the processing off the work from the irq into a workqueue.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-26719
https://www.cve.org/CVERecord?id=CVE-2024-26719
https://git.kernel.org/stable/c/39126abc5e20611579602f03b66627d7cd1422f0
https://git.kernel.org/stable/c/985d053f7633d8b539ab1531738d538efac678a9
https://git.kernel.org/stable/c/cc0037fa592d56e4abb9c7d1c52c4d2dc25cd906
https://bugzilla.redhat.com/show_bug.cgi?id=2273143
https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-26719.mbox

Comment 3 Thomas Zimmermann 2024-04-18 07:29:00 UTC

See comment 2 for the resolution.

Comment 4 Thomas Zimmermann 2024-04-18 07:33:10 UTC

Also pending for SLE15-SP2-EB and SLE12-SP5.

Comment 8 Thomas Zimmermann 2024-04-30 12:07:58 UTC

REOPENING as the patch needs more work before it goes into SLE12-SP5.