CVE-2024-42124 Affecting dlm-kmp-default package, versions <6.4.0-150600.23.22.1
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-SLES156-DLMKMPDEFAULT-8078409
- published 24 Sep 2024
- disclosed 23 Sep 2024
Introduced: 23 Sep 2024
CVE-2024-42124 Open this link in a new tabHow to fix?
Upgrade SLES:15.6 dlm-kmp-default to version 6.4.0-150600.23.22.1 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream dlm-kmp-default package and not the dlm-kmp-default package as distributed by SLES.
See How to fix? for SLES:15.6 relevant fixed versions and status.
In the Linux kernel, the following vulnerability has been resolved:
scsi: qedf: Make qedf_execute_tmf() non-preemptible
Stop calling smp_processor_id() from preemptible code in qedf_execute_tmf90. This results in BUG_ON() when running an RT kernel.
[ 659.343280] BUG: using smp_processor_id() in preemptible [00000000] code: sg_reset/3646 [ 659.343282] caller is qedf_execute_tmf+0x8b/0x360 [qedf]
References
- https://www.suse.com/security/cve/CVE-2024-42124.html
- https://bugzilla.suse.com/1228705
- https://git.kernel.org/stable/c/0a8a91932b2772e75bf3f6d133ca4225d1d3e920
- https://git.kernel.org/stable/c/0d8b637c9c5eeaa1a4e3dfb336f3ff918eb64fec
- https://git.kernel.org/stable/c/2b9c7787cfcd1e76d873a78f16cf45bfa4b100ea
- https://git.kernel.org/stable/c/4f314aadeed8cdf42c8cf30769425b5e44702748
- https://git.kernel.org/stable/c/5ceb40cdee721e13cbe15a0515cacf984e11236b
- https://git.kernel.org/stable/c/b6ded5316ec56e973dcf5f9997945aad01a9f062
- https://git.kernel.org/stable/c/fa49c65a1cec6a3901ef884fdb24d98068b63493