CVE-2024-56584

io_uring/tctx: work around xa_store() allocation error issue

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/tctx: work around xa_store() allocation error issue syzbot triggered the following WARN_ON: WARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51 which is the WARN_ON_ONCE(!xa_empty(&tctx->xa)); sanity check in __io_uring_free() when a io_uring_task is going through its final put. The syzbot test case includes injecting memory allocation failures, and it very much looks like xa_store() can fail one of its memory allocations and end up with ->head being non-NULL even though no entries exist in the xarray. Until this issue gets sorted out, work around it by attempting to iterate entries in our xarray, and WARN_ON_ONCE() if one is found.

N/A
CVSS
Severity:
EPSS 0.04%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/94ad56f61b873ffeebcc620d451eacfbdf9d40f0
https://git.kernel.org/stable/c/42882b583095dcf747da6e3af1daeff40e27033e
https://git.kernel.org/stable/c/d5b2ddf1f90c7248eff9630b95895c8950f2f36d
https://git.kernel.org/stable/c/7eb75ce7527129d7f1fee6951566af409a37a1c4

Frequently Asked Questions

What is the severity of CVE-2024-56584?
CVE-2024-56584 has not yet been assigned a CVSS score.
How to fix CVE-2024-56584?
To fix CVE-2024-56584, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-56584 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-56584 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-56584?
CVE-2024-56584 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.