CVE - CVE-2024-26691

CVE-ID
CVE-2024-26691	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix circular locking dependency The rule inside kvm enforces that the vcpu->mutex is taken inside kvm->lock. The rule is violated by the pkvm_create_hyp_vm() which acquires the kvm->lock while already holding the vcpu->mutex lock from kvm_vcpu_ioctl(). Avoid the circular locking dependency altogether by protecting the hyp vm handle with the config_lock, much like we already do for other forms of VM-scoped data.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/10c02aad111df02088d1a81792a709f6a7eca6cc URL:https://git.kernel.org/stable/c/10c02aad111df02088d1a81792a709f6a7eca6cc MISC:https://git.kernel.org/stable/c/3ab1c40a1e915e350d9181a4603af393141970cc URL:https://git.kernel.org/stable/c/3ab1c40a1e915e350d9181a4603af393141970cc MISC:https://git.kernel.org/stable/c/3d16cebf01127f459dcfeb79ed77bd68b124c228 URL:https://git.kernel.org/stable/c/3d16cebf01127f459dcfeb79ed77bd68b124c228
Assigning CNA
kernel.org
Date Record Created
20240219	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240219)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)