Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
In the Linux kernel, the following vulnerability has been resolved:dm: call the resume method on internal suspendThere is this reported crash when experimenting with the lvm2 testsuite.The list corruption is caused by the fact that the postsuspend and resumemethods were not paired correctly; there were two consecutive calls to theorigin_postsuspend function. The second call attempts to remove the"hash_list" entry from a list, while it was already removed by the firstcall.Fix __dm_internal_resume so that it calls the preresume and resumemethods of the table's targets.If a preresume method of some target fails, we are in a tricky situation.We can't return an error because dm_internal_resume isn't supposed toreturn errors. We can't return success, because then the "resume" and"postsuspend" methods would not be paired correctly. So, we set theDMF_SUSPENDED flag and we fake normal suspend - it may confuse userspacetools, but it won't cause a kernel crash.------------[ cut here ]------------kernel BUG at lib/list_debug.c:56!invalid opcode: 0000 [#1] PREEMPT SMPCPU: 1 PID: 8343 Comm: dmsetup Not tainted 6.8.0-rc6 #4Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-2 04/01/2014RIP: 0010:__list_del_entry_valid_or_report+0x77/0xc0
No PoCs from references.
- https://github.com/fkie-cad/nvd-json-data-feeds