CVE-2024-38663
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-38663
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38663.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-38663
- Downstream
- Related
- Published
- 2024-06-24T13:50:51.710Z
- Modified
- 2025-11-20T04:54:59.109109Z
- Summary
- blk-cgroup: fix list corruption from resetting io stat
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
blk-cgroup: fix list corruption from resetting io stat
Since commit 3b8cc6298724 ("blk-cgroup: Optimize blkcgrstatflush()"), each iostat instance is added to blkcg percpu list, so blkcgresetstats() can't reset the stat instance by memset(), otherwise the llist may be corrupted.
Fix the issue by only resetting the counter part.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced3b8cc6298724021da845f2f9fd7dd4b6829a6817Fixedd4a60298ac34f027a09f8f893fdbd9e06279bb24
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced3b8cc6298724021da845f2f9fd7dd4b6829a6817Fixed89bb36c72e1951843f9e04dc84412e31fcc849a9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced3b8cc6298724021da845f2f9fd7dd4b6829a6817Fixed6da6680632792709cecf2b006f2fe3ca7857e791
Affected versions
v6.*
v6.1
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
Database specific
vanir_signatures
[
{
"digest": {
"length": 810.0,
"function_hash": "236159750850157397753346459568700521561"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6da6680632792709cecf2b006f2fe3ca7857e791",
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "blkcg_reset_stats",
"file": "block/blk-cgroup.c"
},
"id": "CVE-2024-38663-12bc61c3",
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"91797111568943748049900642907379613647",
"329049039882925616250964256526238256951",
"118451678901881058304159420495401759499",
"149669346962696378944364707189112189414",
"119065252723523420939148513400550632786",
"127105849482894230540912304849326434932",
"6902521889528708740731310691515398409",
"139211448994000503197614572921389022622",
"43389335871161476287761719380000058984",
"63772081530333894344924985331434747252",
"257255326666218916318739793855264168344",
"63482636333647819385621582870430105057",
"290014902569720783643080683492689243244",
"8971171857567485026079824905433169165",
"136794935046352013038691644840368655136",
"192286765726215661649837710172628104730",
"179556125220036741621803756233430526564",
"284086308459872603399102391775549000486",
"240102278253599374788381190803802517273",
"47541546082439377868099383935091050894",
"15396017446455799928228711513764410542",
"263002952647571529618000050126411666256",
"251134515525752116668888519346334640195",
"120658786969251735945590822961714212789",
"159830818344066703062258461346898756409",
"67974553196620608797040329772252457277",
"19606559841035313546956833336366082465",
"89413386293599759392602521004201393382",
"11046712703796954999179101430464043471",
"199102259958512999357685306367944875593",
"296024499417592602391812374151831481289",
"234781666171796375889982525349222075461"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d4a60298ac34f027a09f8f893fdbd9e06279bb24",
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "block/blk-cgroup.c"
},
"id": "CVE-2024-38663-795e2a92",
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"91797111568943748049900642907379613647",
"329049039882925616250964256526238256951",
"118451678901881058304159420495401759499",
"149669346962696378944364707189112189414",
"119065252723523420939148513400550632786",
"127105849482894230540912304849326434932",
"6902521889528708740731310691515398409",
"139211448994000503197614572921389022622",
"43389335871161476287761719380000058984",
"63772081530333894344924985331434747252",
"257255326666218916318739793855264168344",
"63482636333647819385621582870430105057",
"290014902569720783643080683492689243244",
"8971171857567485026079824905433169165",
"136794935046352013038691644840368655136",
"192286765726215661649837710172628104730",
"179556125220036741621803756233430526564",
"284086308459872603399102391775549000486",
"240102278253599374788381190803802517273",
"47541546082439377868099383935091050894",
"15396017446455799928228711513764410542",
"263002952647571529618000050126411666256",
"251134515525752116668888519346334640195",
"120658786969251735945590822961714212789",
"159830818344066703062258461346898756409",
"67974553196620608797040329772252457277",
"19606559841035313546956833336366082465",
"89413386293599759392602521004201393382",
"11046712703796954999179101430464043471",
"199102259958512999357685306367944875593",
"296024499417592602391812374151831481289",
"234781666171796375889982525349222075461"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89bb36c72e1951843f9e04dc84412e31fcc849a9",
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "block/blk-cgroup.c"
},
"id": "CVE-2024-38663-8e77332f",
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"91797111568943748049900642907379613647",
"329049039882925616250964256526238256951",
"118451678901881058304159420495401759499",
"149669346962696378944364707189112189414",
"119065252723523420939148513400550632786",
"127105849482894230540912304849326434932",
"6902521889528708740731310691515398409",
"139211448994000503197614572921389022622",
"43389335871161476287761719380000058984",
"63772081530333894344924985331434747252",
"257255326666218916318739793855264168344",
"63482636333647819385621582870430105057",
"290014902569720783643080683492689243244",
"8971171857567485026079824905433169165",
"136794935046352013038691644840368655136",
"192286765726215661649837710172628104730",
"179556125220036741621803756233430526564",
"284086308459872603399102391775549000486",
"240102278253599374788381190803802517273",
"47541546082439377868099383935091050894",
"15396017446455799928228711513764410542",
"263002952647571529618000050126411666256",
"251134515525752116668888519346334640195",
"120658786969251735945590822961714212789",
"159830818344066703062258461346898756409",
"67974553196620608797040329772252457277",
"19606559841035313546956833336366082465",
"89413386293599759392602521004201393382",
"11046712703796954999179101430464043471",
"199102259958512999357685306367944875593",
"296024499417592602391812374151831481289",
"234781666171796375889982525349222075461"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6da6680632792709cecf2b006f2fe3ca7857e791",
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "block/blk-cgroup.c"
},
"id": "CVE-2024-38663-92b44670",
"signature_type": "Line"
},
{
"digest": {
"length": 810.0,
"function_hash": "236159750850157397753346459568700521561"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d4a60298ac34f027a09f8f893fdbd9e06279bb24",
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "blkcg_reset_stats",
"file": "block/blk-cgroup.c"
},
"id": "CVE-2024-38663-b6bbd8c3",
"signature_type": "Function"
},
{
"digest": {
"length": 810.0,
"function_hash": "236159750850157397753346459568700521561"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89bb36c72e1951843f9e04dc84412e31fcc849a9",
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "blkcg_reset_stats",
"file": "block/blk-cgroup.c"
},
"id": "CVE-2024-38663-e18364fc",
"signature_type": "Function"
}
]