CVE-2024-38553

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-38553
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38553.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-38553
Downstream
Related
Published
2024-06-19T13:35:24.743Z
Modified
2026-03-23T05:06:30.687556215Z
Summary
net: fec: remove .ndo_poll_controller to avoid deadlocks
Details

In the Linux kernel, the following vulnerability has been resolved:

net: fec: remove .ndopollcontroller to avoid deadlocks

There is a deadlock issue found in sungem driver, please refer to the commit ac0a230f719b ("eth: sungem: remove .ndopollcontroller to avoid deadlocks"). The root cause of the issue is that netpoll is in atomic context and disableirq() is called by .ndopollcontroller interface of sungem driver, however, disableirq() might sleep. After analyzing the implementation of fecpollcontroller(), the fec driver should have the same issue. Due to the fec driver uses NAPI for TX completions, the .ndopollcontroller is unnecessary to be implemented in the fec driver, so fecpollcontroller() can be safely removed.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/38xxx/CVE-2024-38553.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7f5c6addcdc039c1a7c435857e6284ecac5d97c8
Fixed
e2348d8c61d03feece1de4c05f72e6e99f74c650
Fixed
d38625f71950e79e254515c5fc585552dad4b33e
Fixed
accdd6b912c4219b8e056d1f1ad2e85bc66ee243
Fixed
87bcbc9b7e0b43a69d44efa5f32f11e32d08fa6f
Fixed
c2e0c58b25a0a0c37ec643255558c5af4450c9f5

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38553.json"