Lucene search

PRIOn knowledge basePRION:CVE-2023-31084

HistoryApr 24, 2023 - 6:15 a.m.

Design/Logic Flaw

2023-04-2406:15:00

PRIOn knowledge base

www.prio-n.com

linux kernel

drivers

blocking operation

vulnerability

dvb_core

design flaw

5.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test_event(fepriv,events). In dvb_frontend_test_event, down(&fepriv->sem) is called. However, wait_event_interruptible would put the process to sleep, and down(&fepriv->sem) may block the process.

CPENameOperatorVersion
debian_linuxeq10.0
debian_linuxeq11.0
debian_linuxeq12.0
fedoraeq37
fedoraeq38
linux_kerneleq6.2

Name	Operator	Version
debian_linux	eq	10.0
debian_linux	eq	11.0
debian_linux	eq	12.0
fedora	eq	37
fedora	eq	38
linux_kernel	eq	6.2

References

lists.debian.org/debian-lts-announce/2023/07/msg00030.html

lists.debian.org/debian-lts-announce/2023/10/msg00027.html

lists.fedoraproject.org/archives/list/[email protected]/message/6HIEOLEOURP4BJZMIL7UGGPYRRB44UDN/

lists.fedoraproject.org/archives/list/[email protected]/message/AOATNX5UFL7V7W2QDIQKOHFFHYKWFP4W/

lore.kernel.org/all/CA+UBctCu7fXn4q41O_3=id1+OdyQ85tZY1x+TkT-6OVBL6KAUw@mail.gmail.com/

security.netapp.com/advisory/ntap-20230929-0003/

www.debian.org/security/2023/dsa-5448

www.debian.org/security/2023/dsa-5480