CVE-2024-58090— Linux kernel 安全漏洞
获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2024-58090 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗ 尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
sched/core: Prevent rescheduling when interrupts are disabled
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: sched/core: Prevent rescheduling when interrupts are disabled David reported a warning observed while loop testing kexec jump: Interrupts enabled after irqrouter_resume+0x0/0x50 WARNING: CPU: 0 PID: 560 at drivers/base/syscore.c:103 syscore_resume+0x18a/0x220 kernel_kexec+0xf6/0x180 __do_sys_reboot+0x206/0x250 do_syscall_64+0x95/0x180 The corresponding interrupt flag trace: hardirqs last enabled at (15573): [<ffffffffa8281b8e>] __up_console_sem+0x7e/0x90 hardirqs last disabled at (15580): [<ffffffffa8281b73>] __up_console_sem+0x63/0x90 That means __up_console_sem() was invoked with interrupts enabled. Further instrumentation revealed that in the interrupt disabled section of kexec jump one of the syscore_suspend() callbacks woke up a task, which set the NEED_RESCHED flag. A later callback in the resume path invoked cond_resched() which in turn led to the invocation of the scheduler: __cond_resched+0x21/0x60 down_timeout+0x18/0x60 acpi_os_wait_semaphore+0x4c/0x80 acpi_ut_acquire_mutex+0x3d/0x100 acpi_ns_get_node+0x27/0x60 acpi_ns_evaluate+0x1cb/0x2d0 acpi_rs_set_srs_method_data+0x156/0x190 acpi_pci_link_set+0x11c/0x290 irqrouter_resume+0x54/0x60 syscore_resume+0x6a/0x200 kernel_kexec+0x145/0x1c0 __do_sys_reboot+0xeb/0x240 do_syscall_64+0x95/0x180 This is a long standing problem, which probably got more visible with the recent printk changes. Something does a task wakeup and the scheduler sets the NEED_RESCHED flag. cond_resched() sees it set and invokes schedule() from a completely bogus context. The scheduler enables interrupts after context switching, which causes the above warning at the end. Quite some of the code paths in syscore_suspend()/resume() can result in triggering a wakeup with the exactly same consequences. They might not have done so yet, but as they share a lot of code with normal operations it's just a question of time. The problem only affects the PREEMPT_NONE and PREEMPT_VOLUNTARY scheduling models. Full preemption is not affected as cond_resched() is disabled and the preemption check preemptible() takes the interrupt disabled flag into account. Cure the problem by adding a corresponding check into cond_resched().
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Linux kernel 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于中断禁用时可能重新调度。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
二、漏洞 CVE-2024-58090 的公开POC
| # | POC 描述 | 源链接 | 神龙链接 |
|---|
AI 生成 POC高级
未找到公开 POC。
登录以生成 AI POC三、漏洞 CVE-2024-58090 的情报信息
请登录查看更多情报信息。
同批安全公告 · Linux · 2025-03-27 · 共 124 条
| CVE-2023-52982 | Linux kernel 安全漏洞 | |
| CVE-2023-52998 | Linux kernel 安全漏洞 | |
| CVE-2023-52999 | Linux kernel 安全漏洞 | |
| CVE-2023-52997 | Linux kernel 安全漏洞 | |
| CVE-2023-52996 | Linux kernel 安全漏洞 | |
| CVE-2023-52995 | Linux kernel 安全漏洞 | |
| CVE-2023-52994 | Linux kernel 安全漏洞 | |
| CVE-2023-52993 | Linux kernel 安全漏洞 | |
| CVE-2023-52992 | Linux kernel 安全漏洞 | |
| CVE-2023-52991 | Linux kernel 安全漏洞 | |
| CVE-2023-52989 | Linux kernel 安全漏洞 | |
| CVE-2023-52988 | Linux kernel 安全漏洞 | |
| CVE-2023-52987 | Linux kernel 安全漏洞 | |
| CVE-2023-52986 | Linux kernel 安全漏洞 | |
| CVE-2023-52985 | Linux kernel 安全漏洞 | |
| CVE-2023-52984 | Linux kernel 安全漏洞 | |
| CVE-2023-52973 | Linux kernel 安全漏洞 | |
| CVE-2022-49761 | Linux kernel 安全漏洞 | |
| CVE-2022-49760 | Linux kernel 安全漏洞 | |
| CVE-2023-52974 | Linux kernel 安全漏洞 |
显示前 20 条,共 124 条。 查看全部 → →
IV. Related Vulnerabilities
V. Comments for CVE-2024-58090
暂无评论