CVE-2024-50207
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-50207
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50207.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-50207
- Downstream
- Related
- Published
- 2024-11-08T06:07:57Z
- Modified
- 2025-10-15T17:34:54.104973Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- ring-buffer: Fix reader locking when changing the sub buffer order
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ring-buffer: Fix reader locking when changing the sub buffer order
The function ringbuffersubbuforderset() updates each ringbufferpercpu and installs new sub buffers that match the requested page order. This operation may be invoked concurrently with readers that rely on some of the modified data, such as the head bit (RBPAGEHEAD), or the ringbufferpercpu.pages and readerpage pointers. However, no exclusive access is acquired by ringbuffersubbuforder_set(). Modifying the mentioned data while a reader also operates on them can then result in incorrect memory access and various crashes.
Fix the problem by taking the readerlock when updating a specific ringbufferpercpu in ringbuffersubbuforderset().
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8e7b58c27b3c567316a51079b375b846f9223bbaFixeda569290525a05162d5dd26d9845591eaf46e5802
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8e7b58c27b3c567316a51079b375b846f9223bbaFixed09661f75e75cb6c1d2d8326a70c311d46729235f