CVE-2024-46791

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-46791

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-46791.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-46791

Downstream

BELL-CVE-2024-46791

DEBIAN-CVE-2024-46791

DLA-3912-1

DLA-4008-1

DSA-5782-1

OESA-2024-2216

OESA-2024-2218

OESA-2024-2219

OESA-2024-2220

SUSE-SU-2024:3551-1

SUSE-SU-2024:3553-1

SUSE-SU-2024:3561-1

SUSE-SU-2024:3564-1

SUSE-SU-2024:3569-1

SUSE-SU-2024:3587-1

SUSE-SU-2024:3592-1

UBUNTU-CVE-2024-46791

USN-7100-1

USN-7100-2

USN-7123-1

USN-7144-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7194-1

USN-7196-1

Related

Published

2024-09-18T08:15:06Z

Modified

2025-08-09T20:01:27Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open

The mcp251xhwwake() function is called with the mpc_lock mutex held and disables the interrupt handler so that no interrupts can be processed while waking the device. If an interrupt has already occurred then waiting for the interrupt handler to complete will deadlock because it will be trying to acquire the same mutex.

CPU0 CPU1 ---- ---- mcp251xopen() mutexlock(&priv->mcplock) requestthreadedirq() <interrupt> mcp251xcanist() mutexlock(&priv->mcplock) mcp251xhwwake() disableirq() <-- deadlock

Use disableirqnosync() instead because the interrupt handler does everything while holding the mutex so it doesn't matter if it's still running.

References

Affected packages