CVE-2024-36944
- ULN >
- Oracle Linux CVE repository >
- CVE-2024-36944
CVE Details
| Release Date: | 2024-05-30 |
Description
In the Linux kernel, the following vulnerability has been resolved:\nReapply 'drm/qxl: simplify qxl_fence_wait'\nThis reverts commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea.\nStephen Rostedt reports:\n'I went to run my tests on my VMs and the tests hung on boot up.\nUnfortunately, the most I ever got out was:\n[ 93.607888] Testing event system initcall: OK\n[ 93.667730] Running tests on all trace events:\n[ 93.669757] Testing all events: OK\n[ 95.631064] ------------[ cut here ]------------\nTimed out after 60 seconds'\nand further debugging points to a possible circular locking dependency\nbetween the console_owner locking and the worker pool locking.\nReverting the commit allows Steve's VM to boot to completion again.\n[ This may obviously result in the '[TTM] Buffer eviction failed'\nmessages again, which was the reason for that original revert. But at\nthis point this seems preferable to a non-booting system... ]
See more information about CVE-2024-36944 from MITRE CVE dictionary and NIST NVD
CVSS Scoring
NOTE: The following CVSS v3.1 metrics and score provided are preliminary and subject to review.
| Base Score: | 4.4 | CVSS Vector: | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
| Attack Vector: | Local network | Attack Complexity: | Low |
| Privileges Required: | High | User Interaction: | None |
| Scope: | Unchanged | Confidentiality Impact: | None |
| Integrity Impact: | None | Availability Impact: | High |
Errata information
| Platform | Errata | Release Date |
| Oracle Linux version 9 (kernel) | ELSA-2024-9315 | 2024-11-14 |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:
- Oracle customers - enter a support request
- Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process
