CVE-2024-50060

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-50060
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50060.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-50060
Downstream
Related
Published
2024-10-21T19:39:49.737Z
Modified
2026-04-02T12:21:14.738321Z
Summary
io_uring: check if we need to reschedule during overflow flush
Details

In the Linux kernel, the following vulnerability has been resolved:

io_uring: check if we need to reschedule during overflow flush

In terms of normal application usage, this list will always be empty. And if an application does overflow a bit, it'll have a few entries. However, nothing obviously prevents syzbot from running a test case that generates a ton of overflow entries, and then flushing them can take quite a while.

Check for needing to reschedule while flushing, and drop our locks and do so if necessary. There's no state to maintain here as overflows always prune from head-of-list, hence it's fine to drop and reacquire the locks at the end of the loop.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50060.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
2b188cc1bb857a9d4701ae59aa7768b5124e262e
Fixed
a2493904e95ce94bbec819d8f7f03b99976eb25c
Fixed
f4ce3b5d26ce149e77e6b8e8f2058aa80e5b034e
Fixed
c2eadeafce2d385b3f6d26a7f31fee5aba2bbbb0
Fixed
eac2ca2d682f94f46b1973bdf5e77d85d77b8e53

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50060.json"