CVE-2024-26999
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-26999
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26999.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-26999
- Downstream
- Related
- Published
- 2024-05-01T05:28:30.760Z
- Modified
- 2025-11-28T02:35:28.588340Z
- Summary
- serial/pmac_zilog: Remove flawed mitigation for rx irq flood
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
serial/pmac_zilog: Remove flawed mitigation for rx irq flood
The mitigation was intended to stop the irq completely. That may be better than a hard lock-up but it turns out that you get a crash anyway if you're using pmac_zilog as a serial console:
ttyPZ0: pmz: rx irq flood ! BUG: spinlock recursion on CPU#0, swapper/0
That's because the prerr() call in pmzreceivechars() results in pmzconsolewrite() attempting to lock a spinlock already locked in pmzinterrupt(). With CONFIGDEBUGSPINLOCK=y, this produces a fatal BUG splat. The spinlock in question is the one in struct uart_port.
Even when it's not fatal, the serial port rx function ceases to work. Also, the iteration limit doesn't play nicely with QEMU, as can be seen in the bug report linked below.
A web search for other reports of the error message "pmz: rx irq flood" didn't produce anything. So I don't think this code is needed any more. Remove it.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26999.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/1be3226445362bfbf461c92a5bcdb1723f2e4907
- https://git.kernel.org/stable/c/52aaf1ff14622a04148dbb9ccce6d9de5d534ea7
- https://git.kernel.org/stable/c/69a02273e288011b521ee7c1f3ab2c23fda633ce
- https://git.kernel.org/stable/c/7a3bbe41efa55323b6ea3c35fa15941d4dbecdef
- https://git.kernel.org/stable/c/ab86cf6f8d24e63e9aca23da5108af1aa5483928
- https://git.kernel.org/stable/c/bbaafbb4651fede8d3c3881601ecaa4f834f9d3f
- https://git.kernel.org/stable/c/ca09dfc3cfdf89e6af3ac24e1c6c0be5c575a729
- https://git.kernel.org/stable/c/d679c816929d62af51c8e6d7fc0e165c9412d2f3
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26999.json
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/
- https://nvd.nist.gov/vuln/detail/CVE-2024-26999
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1da177e4c3f41524e886b7f1b8a0c1fc7321cac2Fixed69a02273e288011b521ee7c1f3ab2c23fda633ceFixedd679c816929d62af51c8e6d7fc0e165c9412d2f3Fixedab86cf6f8d24e63e9aca23da5108af1aa5483928Fixed7a3bbe41efa55323b6ea3c35fa15941d4dbecdefFixedbbaafbb4651fede8d3c3881601ecaa4f834f9d3fFixed52aaf1ff14622a04148dbb9ccce6d9de5d534ea7Fixedca09dfc3cfdf89e6af3ac24e1c6c0be5c575a729Fixed1be3226445362bfbf461c92a5bcdb1723f2e4907
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.12Fixed4.19.313
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.275
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.216
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.157
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.88
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.29
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.8.8